How to remove the DnsEvent, NTDS, and NtFrs event logs on DC

How to remove the DnsEvent, NTDS, and NtFrs event logs from Demoted Domain Controller.

It is not possible to delete event logs while EVentLog service is running, and the EventLog service cannot be stopped.
You can use the following procedure to locally remove the subject event logs:

1. Start->Run->CMD, press ENTER

2. Type REG ADD \\DemotedDC\HKLM\SYSTEM\CurrentControlSet\Services\Eventlog /V Start /T REG_DWORD /F /D 4 press ENTER

3. Restart DemotedDC.

NOTE: Ignore any error messages about service failures.

4. Start->Run->CMD, press ENTER

5. Type the following commands, pressing ENTER after each line:

del /q /f %SystemRoot%\System32\Config\DnsEvent.Evt
del /q /f %SystemRoot%\System32\Config\NTDS.Evt
del /q /f %SystemRoot%\System32\Config\NtFrs.Evt
REG DELETE "\\DemotedDC\HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Directory Service" /F
REG DELETE "\\DemotedDC\HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\DNS Server" /F
REG DELETE "\\DemotedDC\HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\File Replication Service" /F
REG ADD \\DemotedDC\HKLM\SYSTEM\CurrentControlSet\Services\Eventlog /V Start /T REG_DWORD /F /D 2

6. Restart DemotedDC.

Tested and worked (October 13, 2006) on Microsoft Windows 2003 Enterprise servers

Inspiration – Remote Process
(Source: http://www.jsifaq.com/SF/Tips/Tip.aspx?id=10427)