This indicates that a DCERPC NetrShareEnum request was detected. This request is suspicious when it is sent from external network.
NetrShareEnum is one of the srvsvc interface operations used to manage the lanmanserver service.
Any unprotected Windows version is vulnerable.
Information disclosure: may be used to conduct further attacks.
Block TCP ports 139 and 445 at the perimeter firewall.