What Range This Port Belongs To
Port 2149 sits in the registered ports range (1024–49151). This range is managed by IANA, meaning organizations and developers can formally claim a port number for their protocol or application. Unlike the well-known ports (0–1023), registered ports don't require root privileges to open, and their assigned services aren't universally recognized by operating systems.
The Official Assignment: ACPTSYS
IANA lists port 2149 as assigned to something called ACPTSYS on both TCP and UDP.1 That's where the official story ends. There's no RFC, no documentation, no public-facing description of what ACPTSYS is or who registered it. The name suggests an acronym — perhaps "Accept System" or something similar — but no trace of the service has surfaced in any technical literature.
This isn't unusual. Many registered ports were claimed by companies for internal software that never became widely deployed. The registration persists in the registry long after the software, the company, or any documentation has vanished.
The Unofficial Use: Deep Throat
The more notable history of port 2149 involves malware. Deep Throat — a remote access trojan popular in 1999 — used port 2149 as part of its operation.2 Like Back Orifice and NetBus, it targeted Windows 95, 98, and NT machines, giving attackers remote control and the ability to silently launch an FTP server on the victim's machine.
Deep Throat was a product of its era: the late 1990s, when consumer broadband was new, Windows machines had minimal security, and remote administration trojans were passed around on forums. It's long obsolete — modern antivirus software catches it trivially — but the port association remains in security databases as a historical artifact.
How to Check What's Using This Port
If you see traffic on port 2149 and want to know what's causing it:
On Linux or macOS:
On Windows:
The process ID in the output can be cross-referenced in Task Manager (Windows) or with ps aux (Linux/macOS) to identify the application.
Why Unassigned and Obscure Ports Matter
The registered ports range contains over 48,000 possible port numbers. IANA has assigned a significant portion of them, but many assignments — like ACPTSYS — represent software that never achieved adoption. The result is a registry full of ghost entries: names without implementations, claims without communities.
This matters for security. When you see traffic on an unfamiliar port, the IANA registry is only a starting point. A port with an official name can still carry malware. A port with no official name might be running legitimate software. The registry describes intent, not reality.
Was deze pagina nuttig?