2. Suspect Advanced Persistent Threat

2.1. Manual Analysis and Remediation Steps

	2.1.0. Run Full System AntiVirus Scan
	2.1.1. Symantec SEP Support Tool Power Eraser Option?
	2.1.2. Symantec Endpoint Recovery Tool CD-ROM Boot Disk or
	2.1.3. Web Analysis?
	2.1.4. Network Traffic Analysis
	2.1.5. Clean Boot Disk Analysis and Extraction with Helix or
	2.1.6. Memory Analysis?
	2.1.7. Submit to Symantec?
	2.1.8. Sucessfully Remediated?

2.2. Wipe/Restore Machine

2.3. Widespread?

2.4. Post-op Prevent Recurrence Policy