5.1. Manual Analysis and Remediation Steps

5.1.8. Sucessfully Remediated?

	5.1.8.1. If YES, STOP and GOTO 3.6. Post-Incident Activity
	5.1.8.2. If NO, consider 5.2.Wipe/Restore.

5.1.0. Run Full System AntiVirus Scan

5.1.1. Symantec SEP Support Tool Power Eraser Option?

5.1.2. Symantec Endpoint Recovery Tool CD-ROM Boot Disk or equivalent

5.1.3. Web Analysis?

5.1.4. Clean Boot Disk Analysis and Extraction with Helix or

5.1.5. Network Traffic Analysis

5.1.6. Memory Analysis?

5.1.7. Submit to Symantec?