I have many mdf and ldf files to analyze, (records altered or deleted).
Any Idea how to analyze these files?
thanks in advance?
I found some viewers via Google
http//
Analysis is up to you.
You posted this question in the EnCase forums as well and the answer is pretty much the same, here. The best and, in some respects, the only viewer capable of forensic analysis of MDF and LDF files is SQL Server, itself. ApexSQL is a good tool but it wasn't designed with forensics in mind and it isn't an alternative to understanding SQL.
If transaction logging is turned on and you have the transaction logs, you can see what records were changed. There are numerous Web sites that you can find with a search engine that will show you how to dump the transaction log.
If transaction logging is not turned on, there are other ways to look at the most recent changes to records, but insofar as I am aware, there are no automated tools to do this and unless you understand how data are organized in SQLServer and have some knowledge of both DDL and DML, you'll not only have a hard time finding what you are looking for, you'll also have a problem defending your actions in court.
If you have database backups, you can perform a comparison of your current database to the backups.
My advice, again, is to get a SQL Server DBA who specializes in database recovery to help you.