2. Suspect Advanced Persistent Threat

2.2. Wipe/Restore Machine

	2.2.1. Bare Metal Restore?
	2.2.2. Snapshot Restore?
	2.2.3. PXE Based Restore
	2.2.4. Attached USB Backup Restore

2.1. Manual Analysis and Remediation Steps

2.3. Widespread?

2.4. Post-op Prevent Recurrence Policy