diff --git a/oletools/olevba.py b/oletools/olevba.py
index c2bedca..a79d007 100644
--- a/oletools/olevba.py
+++ b/oletools/olevba.py
@@ -662,8 +662,7 @@ SUSPICIOUS_KEYWORDS = {
     #TODO: use regex to support variable whitespaces
     #http://www.certego.net/en/news/advanced-vba-macros/
     'May read system environment variables':
-        ('Environ','Win32_Environment','Environment','ExpandEnvironmentStrings','HKCU\Environment',
-        'HKEY_CURRENT_USER\Environment'),
+        ('Environ','Win32_Environment','Environment','ExpandEnvironmentStrings'),
     'May open a file':
         ('Open',),
     'May write to a file (if combined with Open)':