Professional Rootkits (Programmer to Programmer)

There are only a few Dbg routines (18 in Windows 2003 Server). This group includes the following:

• DbgBreakPoint

• DbgUserBreakPoint

• DbgPrint

• DbgUiConnectToDbg

If you are hooking debug operations, you will need to look further into the Dbg functional group.