Update defense_evasion_ml_suspicious_windows_event_low_probability.toml

Author: Samirbous

rules/integrations/problemchild/defense_evasion_ml_suspicious_windows_event_low_probability.toml

@@ -12,7 +12,7 @@ probability of it being malicious activity. Alternatively, the model's blocklist
 malicious.
 """
 from = "now-10m"
-index = ["logs-endpoint.events.process-*", "winlogbeat-*"]
+index = ["logs-endpoint.events.process-*"]
 language = "eql"
 license = "Elastic License v2"
 name = "Machine Learning Detected a Suspicious Windows Event with a Low Malicious Probability Score"