diff --git a/rules/windows/image_load/image_load_alternate_powershell_hosts_moduleload.yml b/rules/windows/image_load/image_load_alternate_powershell_hosts_moduleload.yml
index 9ec56128d..7d5f825ed 100644
--- a/rules/windows/image_load/image_load_alternate_powershell_hosts_moduleload.yml
+++ b/rules/windows/image_load/image_load_alternate_powershell_hosts_moduleload.yml
@@ -28,7 +28,6 @@ detection:
             - 'C:\Program Files\Citrix\ConfigSync\'
     filter_aurora:
         # This filter is to avoid a race condition FP with this specific ETW provider in aurora
-        Provider_Name: Microsoft-Windows-Kernel-Process
         Image: null
     condition: selection and not 1 of filter_*
 falsepositives: