Forgot to say i am running zabbix 5

Thank you very much for your reply! We could verify the AuthoritativeEngine time was less than 150 secs for working systems and more that 150 secs for system not responding to snmp.

You say that when reboots and everything is ok then you suspect a problem in the device. When we reboot shouldn't the AuthoritativeEngineBoots increase one value and AuthoritativeEngine time reset to 0 and communicated to zabbix? At this time bothe zabbix and equipment should have both counters identical

Any way we will take a tcpdump to a system we expect to fail today and see how it fails

IIRC, that dummy request is totally legit query for doing engineID discovery. I have seen those in snmpv3 tcpdumps from Zabbix to devices almost for each query...It is like saying "Hello, how can we talk to each other" - "ok, heres my boot count, engineID and boottime"...

if something is answered with 1.3.6.1.6.3.15.1.1.2.0, then you may have too big time differences in devices.. RFC says +-150 sec...
If the extracted value of msgAuthoritativeEngineID is the same as the value of snmpEngineID of the processing SNMP engine (meaning this is the authoritative SNMP engine), then if any of the following conditions is true, then the message is considered to be outside of the Time Window:
- the local value of snmpEngineBoots is 2147483647;
- the value of the msgAuthoritativeEngineBoots field differs from the local value of snmpEngineBoots; or,
- the value of the msgAuthoritativeEngineTime field differs from the local notion of snmpEngineTime by more than +/- 150 seconds.
And if you reboot your device and everything turns OK, then I suspect that is the issue with that device, not Zabbix.

After device reboot it will not report to zabbix anything before zabbix comes and queries again....