The global operation was intended to root out malicious IP addresses used for phishing, ransomware and infostealer malware.