The goal was to figure out if a login is member of n-windows groups.
e.g. this will show all auth paths for the given windows login (not a group)
-- how does this login get to the database (authority paths)
EXEC master..xp_logininfo @acctname = 'PBTF\bob',@option = 'all'
btw if you grant auth to a group, every member of that group has the same rights to do things, wright ?
I would advise to split groups for your dba/sysadmins and the service accounts that you are using.
SQLserver will set the needed auth for its service accounts during the set/alter operation of these service accounts.
The goal is to have minimal authorized settings in use. (keep doors closed)
My guess is you should at least revise these:
PBTF\SvcSPContent -- my guess to execute some type of sprocs
PBTF\SvcSPSearch -- my guess to execute search sprocs
PBTF\SvcSPSQL -- please don't let this be to execute dynamic sql.
PBTF\SvcSQL -- my guess your "regular" sqlserver service account (sqlserver will set the needed auth !)
PBTF\SvcSQLRS -- my guess your regular Report Server service account (sqlserver will set the needed auth !)