HCHTech
Well-Known Member
- Reaction score
- 3,824
- Location
- Pittsburgh, PA - USA
Ok, this is definitely a Monday kind of problem. User at a client emails this morning. "Every time I open Excel, I get this." Then they pasted what looked like a text file installer log for one of their LOB apps.
I remote in, and sure enough, Excel auto-opens this "install.log" file, which is from a recent update loaded for their main LOB app. No other users have reported this symptom, and it didn't appear on the management workstation I keep there, so definitely something with this one user's computer.
They didn't report anything unusual with the update for the LOB app when it loaded last week, or with the use of that app now. This isn't a file recovery thing, just auto-open.
I looked in the XLSTART directory for their version of Office (M365), I looked through the General screen under Options for anything auto-start related, I looked to make sure that the Excel shortcut didn't have a file name appended to the open command, I rebooted, I did a search for "install.log" on the C: drive, but found dozens from various softwares - apparently that's a commonly-used name. I ran full AV and EDR scans, just for fun, but both came up clean. No updates available for Office.
I uninstalled and reinstalled Office, I dug through the registry for Excel entries, I turned off the auto-recovery options, but nothing I did made any difference or provided any clues to what was happening. Opening Excel in safe mode didn't load the file, but that didn't give me any real clues to follow. The only real Office add-in they have is for Citrix Sharefile in Outlook; so not related to Excel as far as I can tell.
Then I remember that File/Info when a file is open in Excel will give you the disk location. That led me to the location of the file that was being loaded, it was on the root of their main client directory on the server. Nothing should be at the root level there, so I just deleted the file. I have no idea how it got there, or how Excel for this one user somehow got stuck autoloading it. Deleting the file stopped the auto-loading. Yeesh - that shouldn't have taken over an hour to find.
I remote in, and sure enough, Excel auto-opens this "install.log" file, which is from a recent update loaded for their main LOB app. No other users have reported this symptom, and it didn't appear on the management workstation I keep there, so definitely something with this one user's computer.
They didn't report anything unusual with the update for the LOB app when it loaded last week, or with the use of that app now. This isn't a file recovery thing, just auto-open.
I looked in the XLSTART directory for their version of Office (M365), I looked through the General screen under Options for anything auto-start related, I looked to make sure that the Excel shortcut didn't have a file name appended to the open command, I rebooted, I did a search for "install.log" on the C: drive, but found dozens from various softwares - apparently that's a commonly-used name. I ran full AV and EDR scans, just for fun, but both came up clean. No updates available for Office.
I uninstalled and reinstalled Office, I dug through the registry for Excel entries, I turned off the auto-recovery options, but nothing I did made any difference or provided any clues to what was happening. Opening Excel in safe mode didn't load the file, but that didn't give me any real clues to follow. The only real Office add-in they have is for Citrix Sharefile in Outlook; so not related to Excel as far as I can tell.
Then I remember that File/Info when a file is open in Excel will give you the disk location. That led me to the location of the file that was being loaded, it was on the root of their main client directory on the server. Nothing should be at the root level there, so I just deleted the file. I have no idea how it got there, or how Excel for this one user somehow got stuck autoloading it. Deleting the file stopped the auto-loading. Yeesh - that shouldn't have taken over an hour to find.
