Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 705 Source: NTDSISAM

Source
Level
Description
<NTDS> (<process id>) Online defragmentation of database '<name>' terminated prematurely after encountering unexpected error <error code>. The next time online defragmentation is started on this database, it will resume from the point of interruption.
Comments
 
The solution is to restart the DC in Active Directory recovery mode, backup your c:\winnt\ntds folders, repair the “offline” database in c:\winnt\ntds\ntds.dic, delete all files except ntds.dic, do a integrity check (should be clean), and finally, run a defragmentation on the ntds.dic.
See the link to "EventID 705 from source ESE" for information on this event.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.

Read more...

 

Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.

Read more...