Apple Event: May 7th at 7 am PT

Learn more

Add to your calendar 

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: SveinnFannar
SveinnFannar Author
User level: Level 1
0 points

Unknown service running "6969/tcp open acmsoda"

I just scanned the open ports on my computer using nmap and found out that there is a service running on port 6969 and i can't find any good answers about it on google.
When i connect to localhost on port 6969 using telnet i get string back beginning with "nduid:" followed by a 40 characters long hex string.

I found something about this being a trojan from 1998, written for windows, but i find that highly unlikely :P

Do you guys have any ideas ?

MacBook Pro, Mac OS X (10.6.6)

Posted on Feb 2, 2011 6:59 AM

Reply
Question marked as Best reply
User profile for user: captfred
captfred
User level: Level 7
26,422 points

Posted on Feb 2, 2011 7:49 AM

The best explanation I've seen is that it's a legitimate service used by bit torrent tracker.

Regards
View in context
3 replies
User profile for user: ajduguid
ajduguid
User level: Level 3
650 points

Feb 2, 2011 8:52 AM in response to SveinnFannar

Well it pops up with acmsoda because it seems, that name has been assigned to that port in the /etc/services file. I believe one of the uses of the file is so you can, when required, give a port name instead of a port number e.g. you want to launch sshd (the ssh server) on the normal ssh port 22. So when required you can either just write 22 or you can change it with ssh.

As pointed out, the port is often associated with BitTorrent. Do you happen to use Vuze? Vuze has a built-in tracker and the default port for that is 6969. There are other BitTorrent clients, one of them may also allow you to run a small BitTorrent tracker.
Reply
User profile for user: joekljk
joekljk
User level: Level 1
0 points

Oct 9, 2013 10:38 AM in response to SveinnFannar

It has absolutely nothing to do with BitTorrent in this specific case. I know this thread is old but I figured I would post the correct solution for the rest of the internetz. If you are getting back the nduid: with 40-digit hex, then chances are you have a HP Touchpad and you have the Palm WebOS SDK and novaterm installed on your mac. You also probably have ports 6968, 6970, and 6971 listening. Just download the Palm WebOS SDK dmg, mount, and double-click on the uninstall-previous-sdk.command to remove the SDK and listeners.

Reply

Unknown service running "6969/tcp open acmsoda"

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up