I have no luck with system restore as we use quite small SSDs and haven't turned it on but i will reconsider this seriuosly. Maybe i will look for some older offline-installer and will try to use them for Rollback.
Your decision to use System restore depends on your other restore practices. You might have a standard SOE image you can just redeploy, or desktop backups in place etc. Without any of these, System restore (even set at 5% space) can save a lot of heartache sometimes. Certainly consider it for those machines you depend on a little more than others if you have no other solutions.
You should be able to ask Support for a previous version of the offline installer. I've read posts where people have done this before.
As it seems not every site is affected and i spent half nigth trying to find what makes the difference with no luck yet. PCs and GPOs are identical 99%. At the affected sites it always returns, also if I try a different Dashboard.
I did try uninstaller and switching off single components, no luck.
I deployed to 90% of my site last night and couldn't replicate the problem, sorry.
I don't think it has anything to do with your Domain, dashboard, settings etc. It sounds much more localised to the PCs themselves. Have a look at my posting
https://forum.avast.com/index.php?topic=171539.msg1228667#msg1228667. I had very similar symptoms in the past with a version which I isolated to affecting only certain model PCs on my site. I resolved it with an updated network driver. Since you are having difficulty with the Firewall which is bound with the network stack this might be a good start. Even taking one of these PCs, doing a full backup and fresh windows install to test might help you understand if its the hardware or other software conflict.
What does bug me about your symptoms is that I thought you should still be able to access the network without a running firewall (or maybe I'm wrong). Can you ping
out from the PC instead of
in, but using an IP instead of DNS name? By default you can't ping PCs on the network, so I'm assuming you have group policies turning this off which wouldn't be working at the moment
Feel free to PM me if you want more info or help.