this search will list out the hosts and their last time these host sent any data to splunk(sort lastTime).
| metadata type=hosts
| fields host firstTime lastTime totalCount
| fieldformat firstTime=strftime(firstTime,"%x %X")
| fieldformat lastTime=strftime(lastTime,"%x %X")
| sort lastTime
>>> Happy Splunking !
