An administrator uses the following Enterprise EDR search query to show web browsers spawning non-browser child processes that connect over the network:
(parent_name:chrome.exe OR parent_name:iexplore.exe OR parent_name:firefox.exe) AND (NOT process_name:chrome.exe OR NOT process_name:iexplore.exe OR NOT process_name:firefox.exe) Which field can be added to this query to filter the results by signature status?
A. childproc_publisher_state
B. process_publisher
C. childproc_reputation
D. process_publisher_state
