4.1. Manual Analysis and Remediation Steps

4.1.7. Sucessfully Remediated?

	4.1.7.1. If YES, STOP and GOTO 3.6. Post-Incident Activity
	4.1.7.2. If NO, consider 4.2.Wipe/Restore.

4.1.0. Run Full System AntiVirus Scan

4.1.1. Symantec SEP Support Tool Power Eraser Option?

4.1.2. Symantec Endpoint Recovery Tool CD-ROM Boot Disk or equivalent

4.1.3. Web Analysis?

4.1.4. Clean Boot Disk Analysis and Extraction with Helix or

4.1.5. Memory Analysis?

4.1.6. Submit to Symantec?