Hello,
Hoping somebody can help with this one.
I've multiple messages in the error log with:
"Login failed for 'sa'"
There's only one person with this password in the company and no reason for anybody else to try and access the server with this password.
I'm looking for what steps to trace backwards, to find out where the attempted login is coming from. A suggestion on the Microsoft newsgroup is to run profiler, which I've tried, but can't see any useful info.
Any input into ways to acheive this would be most welcome.
Thanks in advance.
---------------------------------------------
If data can screw you, it will; never assume the data are correct.