Hello,

        I don't know if it's possible, but I need combine in Log Parser :

FROM, TO, IP, DNS NAME, HITS

x         x     x   x                      10000

x         x     x   x                       9999

           x (if more with the same sender and receiver)

I try it this codes.

./logparser.exe "SELECT EXTRACT_PREFIX(remote-endpoint,0,':') as IP,REVERSEDNS(EXTRACT_PREFIX(remote-endpoint,0,':')) as Name,Count(*) as Hits from 'C:\Program Files\Microsoft\Exchange Server\V14\TransportRoles\Logs\ProtocolLog\SmtpSend\*.log' WHERE data LIKE '%EHLO%' GROUP BY IP ORDER BY Hits DESC" -i:CSV -nSkipLines:4 -rtp:-1 >> C:\Temp\ES-DSS-SMTPSend_MAILFLOW07032020_01.csv

and

./logparser.exe "SELECT data,Count(*) as Hits from 'C:\Program Files\Microsoft\Exchange Server\V14\TransportRoles\Logs\ProtocolLog\SmtpSend\*.log' WHERE data LIKE '%MAIL FROM%' or data LIKE '%RCPT TO%' GROUP BY data ORDER BY Hits DESC" -i:CSV -nSkipLines:4 -rtp:-1 >> C:\temp\ES-DSS-SMTPSend_MAILFLOW07032020.csv

I don't know how combine or make a Select into another select.

Thanks and regards,

Tomás Esteban Corey