Possible affected domains - sftp discovery.txt

The following organizations have at least one instance of MOVEit SFTP running in their IP space.
Data is from Shodan.io, subject to change. This is likely not a complete list, and some of the organizations on this list may not have been vulnerable.
Source: Shodan.io for servers with header "MOVEit+Transfer+SFTP"
NOTE: SFTP is not the attack vector, but can indicate that a vulnerable web instance of MOVEit may have also been exposed to the internet.

Some of these organizations may not be directly affected, but host organizations which utilized MOVEit.

aciondemand.com
agilysysau.com
agilysyscn.com
agilysyseu.com
amazonaws.com
amazonaws.com.cn
awsglobalaccelerator.com
azure.com
bankwithunited.com
bigleaf.net
bluecrossmn.com
c7dc.com
caresource.com
cdphp.com
centurylink.net
cerner.com
cernerworks.com
chw.org
clearconnect.com
colt.net
comcastbusiness.net
compucom.com
corexchange.com
csiweb.net
ctl.one
dataweb.net
dominos.com
embarqnow.net
enzo.com
esecuretransfer.com
exponential-e.net
fuse.net
googleusercontent.com
hcls-lev.com
heidelberg.com
i95.net
infinigate.ch
ip-51-68-70.eu
iscorp.com
lereta.com
martiag.ch
mathworks.com
mcw.edu
md.gov
mkcorp.com
nuance.com
ololrmc.com
optonline.net
optum.com
ovh.net
premierinc.com
q9.net
rainhail.com
ras-transfer.com
rr.com
sasknet.sk.ca
sbw.us
scif.com
spectrum.com
stargate.net
state.md.us
switchnap.com
telecomitalia.it
toppanmerrill.com
torontohousing.ca
tpgi.com.au
uhcsr.com
vfacts.com
warren.oh.us
west.com
win.be
wpsic.com
wyndhamvo.com