Hi! This is my first post here, but I'm a longtime reader.
I'm investigating who or what is deleting records from a table. I've used some scripts to query the TLogs to find the login that executed the delete statements. I found that it is our general purpose login that we let applications connect with. So we have several possible culprits, all using the same login.
Is there a way to find out:
1. What specific application using the general purpose login ran the deletes?
2. What specific data was deleted?
Thanks in advance!