How to remove data in Active Directory after an unsuccessful domain controller demotion
http://support.microsoft.com/kb/216498 Windows Server 2003 Service Pack 1 (SP1) or later service packs – Enhanced version of Ntdsutil.exe The version of Ntdsutil.exe that is included with Service Pack 1 or later service packs for Windows Server 2003 has been enhanced to make the metadata cleanup process complete. The Ntdsutil.exe version that is included with SP1 or later service packs does the following when metadata cleanup is run: * Removes the NTDSA or NTDS Setting subject. * Removes inbound AD connection objects that existing destination DCs use to replicate from the source DC being deleted . * Removes the computer account . * Removes FRS member object. * Removes FRS subscriber objects. * Tries to seize flexible single operations master roles (also known as flexible single master operations or FSMO) held by the DC that are being removed . Caution The administrator must also make sure that replication has occurred since the demotion before manuall