Blitz Result: Sysadmins List
Don’t think of these security accounts as sysadmins.
Think of them as users who can get you fired.
Anyone in the sysadmin role can perform any task whatsoever, including covering their tracks.
This part of our SQL Server sp_Blitz script lists all of the users in the sysadmin role. If any of these names don’t seem familiar to you, you might have a problem.
To Fix the Problem
You probably don’t want to remove users willy-nilly, but you’ll definitely want to start by copying this list into an email to the users. If possible, these users should be removed from this role.
Keep in mind that developers may be using the SA role in order to perform the TRUNCATE TABLE command. In the old days (SQL 2000), we used the SA role so that developers could write code that truncated tables they didn’t own.