Using McAfee Endpoint Security 10.6 on Windows 10 it is the second time I got the:
I cannot find anything related to it while Googling around: "JTI/Suspect.131328"
The question: is this a false alert? Or not?
Such events sometimes could be addressed as False-Positive but it depends on the exact threat details:
You can find some additional details in below article:
JTI means that it comes from a reputational/behavioral check of that scanner part of Adaptive Threat Protection.
If you share all details of that threat event, we can take a look and find out what exactly happened.
Most probably CMD executed suspicious/malicious command within the System32 folder which is important system storage.