On April 13, the #FBI conducted a court-authorized operation to remove hundreds of malicious web shells from vulnerable Microsoft Windows in the U.S. to disrupt the exploitation of vulnerabilities in Microsoft's email server software. However, the operation did not search for or remove additional malware or hacking tools that hacking groups may have placed on victim networks through the web shells.

https://www.ic3.gov/Media/News/2021/210414.pdf