Hikvision FIRMWARE TOOLS - change language, extract files and create own firmware

alastairstevenson · Aug 5, 2015

There are quite a few steps. maybe a bit optimistic if you've not done this before.
I had a look out of curiosity, and found this slightly newer 3.1.6 firmware version here, 3 from the bottom: http://overseas.hikvision.com/en/download_89_p1.html

The digicap.dav is unusually large at 28MB, and using Hiktools to 'split' it yields a cramfs.img of 15MB. Strange. A closer look shows there are 2 cramfs.img images held in the digicap.dav, one 15MB and one 12MB
So I mounted these in Linux and sure enough there is a 100KB logo.tar.lzma file which might be a candidate to customise for the bootup image.
However - this 3.1.6 firmware is one of the series where the component files have been encoded or encrypted, which unfortunately inhibits the ability to change the contents.
The same is also true of the second cramfs.img that is held in the digicap.dav, also encrypted.

Your firmware at 3.1.1 is a little older. Maybe it pre-dates when encryption was introduced.
To examine you'd use the following steps:
In Windows, create a new folder under the one where the digicap.dav (and hiktools05r1.exe) is stored, lets call it 'contents'.
At a command prompt 'hiktools05r1 split digicap.dav contents'
This will extract cramfs.img (just the first one) into contents.
If you copy that into a Linux environment you should be able to mount it as a CRAMFS and examine the contents.
A simple way to check if the files are encoded is to use 'file *' and see which are listed as 'data'.

maca2004 · Aug 5, 2015

Cheers Alistair....where can I download hiktools05r1?

Regards
Neil

catseyenu · Aug 5, 2015

maca2004 said:
Cheers Alistair....where can I download hiktools05r1?

Regards
Neil

In the OP: http://www.ipcamtalk.com/showthread.php/2733-Hikvision-FIRMWARE-TOOLS-change-language-extract-files-and-create-own-firmware

maca2004 · Aug 6, 2015

Cheers catseyenu - I'm an idiot - I couldn't see for looking

devjatov.alex · Aug 7, 2015

All I unpacked . When zapakovke back files become smaller . Narimer file INITRD is 8 megabytes if
to extract the program ImgExtractor.exe, it takes 6.14 megabytes , if then packed in a file, it already takes 3 megabytes .
That is, even without changing anything in it it turns out less , after unpacking , zapakovki . You can somehow unpack and then pack it to be
original size ? If not difficult, what programs do it?

fay_dan · Aug 11, 2015

I just bought two 2cd3320-I with V5.3.0_150513 on it. I try the hiktools to change the region flag but not sucessful. Try to use TFTP downgrade to english version 5.2 not sucessful. Is there any other solution? I keep having the "language mismatch" error on my English 7104 NVR.

I don't reganise this language issue before.

When I use hkitools, it has different number iHeadTotalLen to the instruction.

When I used TFTP to update the firmware, it just stop at file transfer completed but not update sucessful.

Am I did somthing wrong?

scn101 · Aug 11, 2015

I don't think you can take a camera that came originally with 5.3.0 down below 5.2.5. I would try whoslooking downgrader firmware available here: http://www.ipcamtalk.com/showthread.php/4036-Custom-Firmware-Downgrader-5-3-0-Chinese-to-5-2-5-English

fay_dan · Aug 11, 2015

I don't mind the chinese interface but I want to change the region code to get rid of the "language mismatch" error on my NVR. Thanks!

alastairstevenson · Aug 11, 2015

Just to be clear in case of any misunderstanding - the Hiktools 'lang' option is used to change the language flag in the header of a firmware file, to get round the 'language mismatch' when applying firmware of one language to a camera or NVR of another language.
Hiktools does not by itself change the internal language or region setting of the camera or NVR, it just allows more choice and flexibility in the firmware that you can apply.

whoslooking · Aug 11, 2015

What we have to understand that my 5.30 Downgrader is not 100% 5.25 it still has parts of the 5.30 that's why is a ghost firmware, I would have loved to make this work for 5.16 but I could not get this to fully work. 5.25 is the lowest I could take it too.

Morkon · Aug 15, 2015

"However - this 3.1.6 firmware is one of the series where the component files have been encoded or encrypted, which unfortunately inhibits the ability to change the contents."

By the way is there any progress with the new firmware? I tried to customize it but no luck.

devjatov.alex · Aug 25, 2015

after changing the file initrun.sh in firmware 5.3.0 , the modified firmware can only be set using TFTP. What you need to do to be able to install the firmware as the original? Through the web interface , eg

kitasaran · Aug 26, 2015

i extract firmware Hikvision_R0_5.3.0_150623, tar file IEfile.tar.gz broken

alastairstevenson · Aug 26, 2015

It's lzma compressed - try something like:

tar -axf /dav/IEfile.tar.gz -C /home/webLib

kitasaran · Aug 27, 2015

How to add the files to firmware, I add files and create firmware on hiktools, the web interface "Upgrading failed"

alastairstevenson · Aug 27, 2015

the web interface "Upgrading failed"

Could be the wrong firmware for the camera, could be wrong region firmware for the camera - if so change the firmware header language with Hiktools.
If you still have telnet or SSH access you could see if there is any useful information in the kernel log using 'cat /proc/kmsg'

kitasaran · Aug 31, 2015

i need add my files and repack firmware based DZ20150507_052_R0_EN_STD_5.3.0_150619

D:\ftp\HIK\hiktools05R1>hiktools05R1.exe digicap.dav

Code:

 HIK firmware header converter 0.5R 

Head raw data(108b) :
00000000 E9 9A F7 B6 59 3B DD D3 2E BC A3 AB A0 CB B5 BE    ....Y;..........
00000010 CC BC FE D6 C8 DD D3 BA B8 A3 AB BF 34 4A 41 45    ............4JAE
00000020 7B 55 9C CB 86 9F B8 B9 A3 AB BC CE 84 8F 8E FD    {U..............
00000030 CE E3 FA ED E0 8B 88 92 9A 8E FA 85 8E 8B FC BC    ................
00000040 89 A9 BB B4 EF C9 C4 F8 DA A8 E5 D2 C9 CD BC FE    ................
00000050 CA DD D3 BA B9 A3 AB BF CB B5 BE BA CD BC FE D6    ................
00000060 49 D6 BA B9 5B A2 BF CB 68 6A BE CD 


Head decoded data(108b) :
00000000 53 57 4B 48 8F F1 00 00 94 05 00 00 1F 00 00 00    SWKH...........
00000010 01 00 00 00 02 00 00 00 01 00 00 00 FF FF FF FF    ................
00000020 C7 AB 4A 01 5B 4C 02 00 00 00 03 05 31 31 34 30    ..J.[L......1140
00000030 30 35 30 30 33 31 31 31 31 31 31 30 30 31 31 00    050031111110011.
00000040 5F 63 66 67 55 70 67 53 65 63 50 6C 73 00 00 00    _cfgUpgSecPls...
00000050 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000060 94 05 00 00 F8 09 00 00 DD D4 04 00 


Magic number :    0x484B5753
iHeaderCheckSum : 0x0000F18F [61839]
iHeadTotalLen :   0x00000594 [1428]
iFileNum :        0x0000001F [31]
iLanguage :       0x00000001 [1] EN/ML
iDeviceClass :    0x00000002
iOEMCode :        0x00000001
iFirmwareVer :    0xFFFFFFFF
iFeature:         0x014AABC7
Calculated CheckSum :        0x0000F18F [61839]


Full decoded data (with full files block):
00000000 53 57 4B 48 8F F1 00 00 94 05 00 00 1F 00 00 00    SWKH...........
00000010 01 00 00 00 02 00 00 00 01 00 00 00 FF FF FF FF    ................
00000020 C7 AB 4A 01 5B 4C 02 00 00 00 03 05 31 31 34 30    ..J.[L......1140
00000030 30 35 30 30 33 31 31 31 31 31 31 30 30 31 31 00    050031111110011.
00000040 5F 63 66 67 55 70 67 53 65 63 50 6C 73 00 00 00    _cfgUpgSecPls...
00000050 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000060 94 05 00 00 F8 09 00 00 DD D4 04 00 5F 63 66 67    ............_cfg
00000070 55 70 67 43 6C 61 73 73 00 00 00 00 00 00 00 00    UpgClass........
00000080 00 00 00 00 00 00 00 00 00 00 00 00 8C 0F 00 00    ................
00000090 60 01 00 00 36 40 00 00 68 49 6D 61 67 65 00 00    `...6@..hImage..
000000A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000000B0 00 00 00 00 00 00 00 00 EC 10 00 00 44 78 4D 00    ............DxM.
000000C0 93 EF 13 20 68 72 6F 6F 74 2E 69 6D 67 00 00 00    ... hroot.img...
000000D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000000E0 00 00 00 00 30 89 4D 00 75 A1 2E 00 F0 3D B0 18    ....0.M.u....=.
000000F0 69 6E 69 74 72 75 6E 2E 73 68 00 00 00 00 00 00    initrun.sh......
00000100 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000110 A5 2A 7C 00 AA 18 00 00 8B B9 08 00 47 42 4B 00    .*|........GBK.
00000120 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000130 00 00 00 00 00 00 00 00 00 00 00 00 4F 43 7C 00    ............OC|.
00000140 EC F9 06 00 67 EB A9 03 41 53 43 31 36 2E 62 69    ....g...ASC16.bi
00000150 6E 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    n...............
00000160 00 00 00 00 00 00 00 00 3B 3D 83 00 45 05 00 00    ........;=..E...
00000170 37 C6 02 00 49 45 66 69 6C 65 2E 74 61 72 2E 67    7...IEfile.tar.g
00000180 7A 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    z...............
00000190 00 00 00 00 80 42 83 00 64 F7 08 00 63 76 78 04    .....B..d...cvx.
000001A0 57 65 62 43 6F 6D 70 6F 6E 65 6E 74 73 2E 65 78    WebComponents.ex
000001B0 65 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    e...............
000001C0 E4 39 8C 00 58 C9 24 00 04 5F 3F 12 65 78 65 63    .9..X.$.._?.exec
000001D0 53 79 73 74 65 6D 43 6D 64 00 00 00 00 00 00 00    SystemCmd.......
000001E0 00 00 00 00 00 00 00 00 00 00 00 00 3C 03 B1 00    ............<...
000001F0 00 1C 00 00 8F 31 08 00 64 61 5F 69 6E 66 6F 00    ....1..da_info.
00000200 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000210 00 00 00 00 00 00 00 00 3C 1F B1 00 80 73 00 00    ........<...s..
00000220 CA CE 2A 00 70 70 70 6F 65 64 00 00 00 00 00 00    ..*.pppoed......
00000230 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000240 00 00 00 00 BC 92 B1 00 68 47 00 00 55 EB 13 00    ........hG..U...
00000250 70 70 70 64 00 00 00 00 00 00 00 00 00 00 00 00    pppd............
00000260 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000270 24 DA B1 00 3C DC 02 00 B1 1A 25 01 63 68 65 63    $...<....%.chec
00000280 6B 5F 63 6F 6E 66 69 67 00 00 00 00 00 00 00 00    k_config........
00000290 00 00 00 00 00 00 00 00 00 00 00 00 60 B6 B4 00    ............`...
000002A0 BC 16 00 00 05 62 05 00 61 6C 73 61 2D 6C 69 62    ....b..alsa-lib
000002B0 2E 74 61 72 2E 67 7A 00 00 00 00 00 00 00 00 00    .tar.gz.........
000002C0 00 00 00 00 00 00 00 00 1C CD B4 00 20 3B 00 00    ........... ;..
000002D0 2D 21 1E 00 69 64 73 70 2E 74 61 72 2E 67 7A 00    -!.idsp.tar.gz.
000002E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000002F0 00 00 00 00 3C 08 B5 00 6D 8D 07 00 20 8B 04 04    ....<...m... ...
00000300 64 72 69 76 65 72 2E 74 61 72 2E 67 7A 00 00 00    driver.tar.gz...
00000310 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000320 A9 95 BC 00 66 19 15 00 87 8F 11 0B 63 6D 65 6D    ....f.....cmem
00000330 6B 2E 6B 6F 00 00 00 00 00 00 00 00 00 00 00 00    k.ko............
00000340 00 00 00 00 00 00 00 00 00 00 00 00 0F AF D1 00    ................
00000350 BD 37 00 00 86 F4 0E 00 67 64 6D 61 6B 2E 6B 6F    .7......gdmak.ko
00000360 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000370 00 00 00 00 00 00 00 00 CC E6 D1 00 34 17 00 00    ............4..
00000380 72 D0 04 00 72 65 63 6F 76 65 72 5F 6D 74 64 00    r...recover_mtd.
00000390 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000003A0 00 00 00 00 00 FE D1 00 BD 37 00 00 65 8B 0F 00    .........7..e...
000003B0 70 74 7A 43 66 67 2E 62 69 6E 00 00 00 00 00 00    ptzCfg.bin......
000003C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000003D0 BD 35 D2 00 77 BF 00 00 FF 20 04 00 64 61 76 69    .5..w.... ..davi
000003E0 6E 63 69 00 00 00 00 00 00 00 00 00 00 00 00 00    nci.............
000003F0 00 00 00 00 00 00 00 00 00 00 00 00 34 F5 D2 00    ............4...
00000400 08 00 00 00 E8 02 00 00 64 61 76 69 6E 63 69 2E    ........davinci.
00000410 74 61 72 2E 67 7A 00 00 00 00 00 00 00 00 00 00    tar.gz..........
00000420 00 00 00 00 00 00 00 00 3C F5 D2 00 62 57 40 00    ........<...bW@.
00000430 E2 F6 0A 20 61 6D 62 61 72 65 6C 6C 61 5F 65 74    ... ambarella_et
00000440 68 5F 64 65 62 75 67 2E 6B 6F 00 00 00 00 00 00    h_debug.ko......
00000450 00 00 00 00 9E 4C 13 01 F8 21 00 00 1A A7 07 00    .....L...!.....
00000460 73 6F 75 6E 64 2E 74 61 72 2E 67 7A 00 00 00 00    sound.tar.gz....
00000470 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000480 96 6E 13 01 9A 38 02 00 A3 6F 27 01 6C 69 62 5F    .n...8...o'.lib_
00000490 73 6F 2E 74 61 72 2E 67 7A 00 00 00 00 00 00 00    so.tar.gz.......
000004A0 00 00 00 00 00 00 00 00 00 00 00 00 30 A7 15 01    ............0..
000004B0 10 B4 18 00 64 E5 FA 0C 68 65 6C 70 2E 74 61 72    ...d...help.tar
000004C0 2E 67 7A 00 00 00 00 00 00 00 00 00 00 00 00 00    .gz.............
000004D0 00 00 00 00 00 00 00 00 40 5B 2E 01 A5 9A 03 00    ........@[......
000004E0 BB FD D2 01 73 73 00 00 00 00 00 00 00 00 00 00    ....ss..........
000004F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000500 00 00 00 00 E5 F5 31 01 BC 16 00 00 18 DC 04 00    ......1.......
00000510 69 76 69 64 65 6F 6E 2E 74 61 72 2E 67 7A 00 00    ivideon.tar.gz..
00000520 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000530 A1 0C 32 01 01 8E 00 00 8C FD 4A 00 74 31 00 00    ..2.......J.t1..
00000540 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000550 00 00 00 00 00 00 00 00 00 00 00 00 A2 9A 32 01    ..............2.
00000560 25 39 04 00 78 38 2C 01 49 45 6C 61 6E 67 2E 74    %9..x8,.IElang.t
00000570 61 72 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ar..............
00000580 00 00 00 00 00 00 00 00 C7 D3 36 01 00 D8 13 00    ..........6.....
00000590 D4 2D B3 09

hiktools05R1.exe split digicap.dav digicap_mod

Code:

 HIK firmware header converter 0.5R 

Head raw data(108b) :
00000000 E9 9A F7 B6 59 3B DD D3 2E BC A3 AB A0 CB B5 BE    ....Y;..........
00000010 CC BC FE D6 C8 DD D3 BA B8 A3 AB BF 34 4A 41 45    ............4JAE
00000020 7B 55 9C CB 86 9F B8 B9 A3 AB BC CE 84 8F 8E FD    {U..............
00000030 CE E3 FA ED E0 8B 88 92 9A 8E FA 85 8E 8B FC BC    ................
00000040 89 A9 BB B4 EF C9 C4 F8 DA A8 E5 D2 C9 CD BC FE    ................
00000050 CA DD D3 BA B9 A3 AB BF CB B5 BE BA CD BC FE D6    ................
00000060 49 D6 BA B9 5B A2 BF CB 68 6A BE CD 


Head decoded data(108b) :
00000000 53 57 4B 48 8F F1 00 00 94 05 00 00 1F 00 00 00    SWKH...........
00000010 01 00 00 00 02 00 00 00 01 00 00 00 FF FF FF FF    ................
00000020 C7 AB 4A 01 5B 4C 02 00 00 00 03 05 31 31 34 30    ..J.[L......1140
00000030 30 35 30 30 33 31 31 31 31 31 31 30 30 31 31 00    050031111110011.
00000040 5F 63 66 67 55 70 67 53 65 63 50 6C 73 00 00 00    _cfgUpgSecPls...
00000050 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000060 94 05 00 00 F8 09 00 00 DD D4 04 00 


Magic number :    0x484B5753
iHeaderCheckSum : 0x0000F18F [61839]
iHeadTotalLen :   0x00000594 [1428]
iFileNum :        0x0000001F [31]
iLanguage :       0x00000001 [1] EN/ML
iDeviceClass :    0x00000002
iOEMCode :        0x00000001
iFirmwareVer :    0xFFFFFFFF
iFeature:         0x014AABC7
Calculated CheckSum :        0x0000F18F [61839]


Full decoded data (with full files block):
00000000 53 57 4B 48 8F F1 00 00 94 05 00 00 1F 00 00 00    SWKH...........
00000010 01 00 00 00 02 00 00 00 01 00 00 00 FF FF FF FF    ................
00000020 C7 AB 4A 01 5B 4C 02 00 00 00 03 05 31 31 34 30    ..J.[L......1140
00000030 30 35 30 30 33 31 31 31 31 31 31 30 30 31 31 00    050031111110011.
00000040 5F 63 66 67 55 70 67 53 65 63 50 6C 73 00 00 00    _cfgUpgSecPls...
00000050 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000060 94 05 00 00 F8 09 00 00 DD D4 04 00 5F 63 66 67    ............_cfg
00000070 55 70 67 43 6C 61 73 73 00 00 00 00 00 00 00 00    UpgClass........
00000080 00 00 00 00 00 00 00 00 00 00 00 00 8C 0F 00 00    ................
00000090 60 01 00 00 36 40 00 00 68 49 6D 61 67 65 00 00    `...6@..hImage..
000000A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000000B0 00 00 00 00 00 00 00 00 EC 10 00 00 44 78 4D 00    ............DxM.
000000C0 93 EF 13 20 68 72 6F 6F 74 2E 69 6D 67 00 00 00    ... hroot.img...
000000D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000000E0 00 00 00 00 30 89 4D 00 75 A1 2E 00 F0 3D B0 18    ....0.M.u....=.
000000F0 69 6E 69 74 72 75 6E 2E 73 68 00 00 00 00 00 00    initrun.sh......
00000100 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000110 A5 2A 7C 00 AA 18 00 00 8B B9 08 00 47 42 4B 00    .*|........GBK.
00000120 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000130 00 00 00 00 00 00 00 00 00 00 00 00 4F 43 7C 00    ............OC|.
00000140 EC F9 06 00 67 EB A9 03 41 53 43 31 36 2E 62 69    ....g...ASC16.bi
00000150 6E 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    n...............
00000160 00 00 00 00 00 00 00 00 3B 3D 83 00 45 05 00 00    ........;=..E...
00000170 37 C6 02 00 49 45 66 69 6C 65 2E 74 61 72 2E 67    7...IEfile.tar.g
00000180 7A 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    z...............
00000190 00 00 00 00 80 42 83 00 64 F7 08 00 63 76 78 04    .....B..d...cvx.
000001A0 57 65 62 43 6F 6D 70 6F 6E 65 6E 74 73 2E 65 78    WebComponents.ex
000001B0 65 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    e...............
000001C0 E4 39 8C 00 58 C9 24 00 04 5F 3F 12 65 78 65 63    .9..X.$.._?.exec
000001D0 53 79 73 74 65 6D 43 6D 64 00 00 00 00 00 00 00    SystemCmd.......
000001E0 00 00 00 00 00 00 00 00 00 00 00 00 3C 03 B1 00    ............<...
000001F0 00 1C 00 00 8F 31 08 00 64 61 5F 69 6E 66 6F 00    ....1..da_info.
00000200 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000210 00 00 00 00 00 00 00 00 3C 1F B1 00 80 73 00 00    ........<...s..
00000220 CA CE 2A 00 70 70 70 6F 65 64 00 00 00 00 00 00    ..*.pppoed......
00000230 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000240 00 00 00 00 BC 92 B1 00 68 47 00 00 55 EB 13 00    ........hG..U...
00000250 70 70 70 64 00 00 00 00 00 00 00 00 00 00 00 00    pppd............
00000260 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000270 24 DA B1 00 3C DC 02 00 B1 1A 25 01 63 68 65 63    $...<....%.chec
00000280 6B 5F 63 6F 6E 66 69 67 00 00 00 00 00 00 00 00    k_config........
00000290 00 00 00 00 00 00 00 00 00 00 00 00 60 B6 B4 00    ............`...
000002A0 BC 16 00 00 05 62 05 00 61 6C 73 61 2D 6C 69 62    ....b..alsa-lib
000002B0 2E 74 61 72 2E 67 7A 00 00 00 00 00 00 00 00 00    .tar.gz.........
000002C0 00 00 00 00 00 00 00 00 1C CD B4 00 20 3B 00 00    ........... ;..
000002D0 2D 21 1E 00 69 64 73 70 2E 74 61 72 2E 67 7A 00    -!.idsp.tar.gz.
000002E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000002F0 00 00 00 00 3C 08 B5 00 6D 8D 07 00 20 8B 04 04    ....<...m... ...
00000300 64 72 69 76 65 72 2E 74 61 72 2E 67 7A 00 00 00    driver.tar.gz...
00000310 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000320 A9 95 BC 00 66 19 15 00 87 8F 11 0B 63 6D 65 6D    ....f.....cmem
00000330 6B 2E 6B 6F 00 00 00 00 00 00 00 00 00 00 00 00    k.ko............
00000340 00 00 00 00 00 00 00 00 00 00 00 00 0F AF D1 00    ................
00000350 BD 37 00 00 86 F4 0E 00 67 64 6D 61 6B 2E 6B 6F    .7......gdmak.ko
00000360 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000370 00 00 00 00 00 00 00 00 CC E6 D1 00 34 17 00 00    ............4..
00000380 72 D0 04 00 72 65 63 6F 76 65 72 5F 6D 74 64 00    r...recover_mtd.
00000390 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000003A0 00 00 00 00 00 FE D1 00 BD 37 00 00 65 8B 0F 00    .........7..e...
000003B0 70 74 7A 43 66 67 2E 62 69 6E 00 00 00 00 00 00    ptzCfg.bin......
000003C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
000003D0 BD 35 D2 00 77 BF 00 00 FF 20 04 00 64 61 76 69    .5..w.... ..davi
000003E0 6E 63 69 00 00 00 00 00 00 00 00 00 00 00 00 00    nci.............
000003F0 00 00 00 00 00 00 00 00 00 00 00 00 34 F5 D2 00    ............4...
00000400 08 00 00 00 E8 02 00 00 64 61 76 69 6E 63 69 2E    ........davinci.
00000410 74 61 72 2E 67 7A 00 00 00 00 00 00 00 00 00 00    tar.gz..........
00000420 00 00 00 00 00 00 00 00 3C F5 D2 00 62 57 40 00    ........<...bW@.
00000430 E2 F6 0A 20 61 6D 62 61 72 65 6C 6C 61 5F 65 74    ... ambarella_et
00000440 68 5F 64 65 62 75 67 2E 6B 6F 00 00 00 00 00 00    h_debug.ko......
00000450 00 00 00 00 9E 4C 13 01 F8 21 00 00 1A A7 07 00    .....L...!.....
00000460 73 6F 75 6E 64 2E 74 61 72 2E 67 7A 00 00 00 00    sound.tar.gz....
00000470 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000480 96 6E 13 01 9A 38 02 00 A3 6F 27 01 6C 69 62 5F    .n...8...o'.lib_
00000490 73 6F 2E 74 61 72 2E 67 7A 00 00 00 00 00 00 00    so.tar.gz.......
000004A0 00 00 00 00 00 00 00 00 00 00 00 00 30 A7 15 01    ............0..
000004B0 10 B4 18 00 64 E5 FA 0C 68 65 6C 70 2E 74 61 72    ...d...help.tar
000004C0 2E 67 7A 00 00 00 00 00 00 00 00 00 00 00 00 00    .gz.............
000004D0 00 00 00 00 00 00 00 00 40 5B 2E 01 A5 9A 03 00    ........@[......
000004E0 BB FD D2 01 73 73 00 00 00 00 00 00 00 00 00 00    ....ss..........
000004F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000500 00 00 00 00 E5 F5 31 01 BC 16 00 00 18 DC 04 00    ......1.......
00000510 69 76 69 64 65 6F 6E 2E 74 61 72 2E 67 7A 00 00    ivideon.tar.gz..
00000520 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000530 A1 0C 32 01 01 8E 00 00 8C FD 4A 00 74 31 00 00    ..2.......J.t1..
00000540 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000550 00 00 00 00 00 00 00 00 00 00 00 00 A2 9A 32 01    ..............2.
00000560 25 39 04 00 78 38 2C 01 49 45 6C 61 6E 67 2E 74    %9..x8,.IElang.t
00000570 61 72 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ar..............
00000580 00 00 00 00 00 00 00 00 C7 D3 36 01 00 D8 13 00    ..........6.....
00000590 D4 2D B3 09 
File 0 _cfgUpgSecPls filelen=2552 filepos=1428 checksum=316637
File 1 _cfgUpgClass filelen=352 filepos=3980 checksum=16438
File 2 hImage filelen=5077060 filepos=4332 checksum=538177427
File 3 hroot.img filelen=3055989 filepos=5081392 checksum=414203376
File 4 initrun.sh filelen=6314 filepos=8137381 checksum=571787
File 5 GBK filelen=457196 filepos=8143695 checksum=61467495
File 6 ASC16.bin filelen=1349 filepos=8600891 checksum=181815
File 7 IEfile.tar.gz filelen=587620 filepos=8602240 checksum=75003491
File 8 WebComponents.exe filelen=2410840 filepos=9189860 checksum=306142980
File 9 execSystemCmd filelen=7168 filepos=11600700 checksum=536975
File 10 da_info filelen=29568 filepos=11607868 checksum=2805450
File 11 pppoed filelen=18280 filepos=11637436 checksum=1305429
File 12 pppd filelen=187452 filepos=11655716 checksum=19208881
File 13 check_config filelen=5820 filepos=11843168 checksum=352773
File 14 alsa-lib.tar.gz filelen=15136 filepos=11848988 checksum=1974573
File 15 idsp.tar.gz filelen=494957 filepos=11864124 checksum=67406624
File 16 driver.tar.gz filelen=1382758 filepos=12359081 checksum=185700231
File 17 cmemk.ko filelen=14269 filepos=13741839 checksum=980102
File 18 gdmak.ko filelen=5940 filepos=13756108 checksum=315506
File 19 recover_mtd filelen=14269 filepos=13762048 checksum=1018725
File 20 ptzCfg.bin filelen=49015 filepos=13776317 checksum=270591
File 21 davinci filelen=8 filepos=13825332 checksum=744
File 22 davinci.tar.gz filelen=4216674 filepos=13825340 checksum=537589474
File 23 ambarella_eth_debug.ko filelen=8696 filepos=18042014 checksum=501530
File 24 sound.tar.gz filelen=145562 filepos=18050710 checksum=19361699
File 25 lib_so.tar.gz filelen=1618960 filepos=18196272 checksum=217769316
File 26 help.tar.gz filelen=236197 filepos=19815232 checksum=30604731
File 27 ss filelen=5820 filepos=20051429 checksum=318488
File 28 ivideon.tar.gz filelen=36353 filepos=20057249 checksum=4914572
File 29 t1 filelen=276773 filepos=20093602 checksum=19675256
File 30 IElang.tar filelen=1300480 filepos=20370375 checksum=162737620

D:\ftp\HIK\hiktools05R1>hiktools05R1.exe create digicap.dav digicap_mod

Code:

 HIK firmware header converter 0.5R 

Head raw data(108b) :
00000000 E9 9A F7 B6 59 3B DD D3 2E BC A3 AB A0 CB B5 BE    ....Y;..........
00000010 CC BC FE D6 C8 DD D3 BA B8 A3 AB BF 34 4A 41 45    ............4JAE
00000020 7B 55 9C CB 86 9F B8 B9 A3 AB BC CE 84 8F 8E FD    {U..............
00000030 CE E3 FA ED E0 8B 88 92 9A 8E FA 85 8E 8B FC BC    ................
00000040 89 A9 BB B4 EF C9 C4 F8 DA A8 E5 D2 C9 CD BC FE    ................
00000050 CA DD D3 BA B9 A3 AB BF CB B5 BE BA CD BC FE D6    ................
00000060 49 D6 BA B9 5B A2 BF CB 68 6A BE CD 


Head decoded data(108b) :
00000000 53 57 4B 48 8F F1 00 00 94 05 00 00 1F 00 00 00    SWKH...........
00000010 01 00 00 00 02 00 00 00 01 00 00 00 FF FF FF FF    ................
00000020 C7 AB 4A 01 5B 4C 02 00 00 00 03 05 31 31 34 30    ..J.[L......1140
00000030 30 35 30 30 33 31 31 31 31 31 31 30 30 31 31 00    050031111110011.
00000040 5F 63 66 67 55 70 67 53 65 63 50 6C 73 00 00 00    _cfgUpgSecPls...
00000050 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00    ................
00000060 94 05 00 00 F8 09 00 00 DD D4 04 00 


Magic number :    0x484B5753
iHeaderCheckSum : 0x0000F18F [61839]
iHeadTotalLen :   0x00000594 [1428]
iFileNum :        0x0000001F [31]
iLanguage :       0x00000001 [1] EN/ML
iDeviceClass :    0x00000002
iOEMCode :        0x00000001
iFirmwareVer :    0xFFFFFFFF
iFeature:         0x014AABC7
Calculated CheckSum :        0x0000F18F [61839]

i insert my command to initrun.sh and repack firmware. Upgrade through a web an error "Upgrading failed".

Code:

[/COLOR][08-31 13:35:28][pid:886][UNI_IF][ERROR][UPG_ASSERT] UPG_STAT_OK == (eRet = firm_upglib_exec(&tUpgExec)) fail to eRetVal eRet=0x00000072!
[08-31 13:35:28][pid:886][UNI_IF][ERROR][UPG_ASSERT] UPG_STAT_OK == (eRet = firm
_upgrade_lib(pUpgInfo)) fail to eRetVal eRet=0x00000072!
[08-31 13:35:28][pid:886][PSIA][ERROR]************* PSIA Upgrading END *********

*****,iRet=-38

kseydou · Aug 31, 2015

Dear all,

i have 89 ip camera HIKVISION but Model DS-2DC3942F-I 360 IP CAMERA, DS-2C3210-I3 EXT CAMERA and DS-2CD3135F-I

all the firmware are in chinese i have to change them in english before gave to costomer please help cause i will be in trouble if the firmware stay like that

and the sofware that is available on the site can't work with the camera cause language issue

i wiil be in trouble pleas ei need help

it's an emergency

Cheers,

HoLeeShiet · Sep 1, 2015

kseydou said:
Dear all,

i have 89 ip camera HIKVISION but Model DS-2DC3942F-I 360 IP CAMERA, DS-2C3210-I3 EXT CAMERA and DS-2CD3135F-I

all the firmware are in chinese i have to change them in english before gave to costomer please help cause i will be in trouble if the firmware stay like that

and the sofware that is available on the site can't work with the camera cause language issue

i wiil be in trouble pleas ei need help

it's an emergency

Cheers,

Where did you buy the cameras?

whoslooking · Sep 2, 2015

What is the firmware on the stickers?
And date of manufacture?

Search

Hikvision FIRMWARE TOOLS - change language, extract files and create own firmware

alastairstevenson

maca2004

n3wb

catseyenu

Getting the hang of it

maca2004

n3wb

devjatov.alex

n3wb

fay_dan

n3wb

Attachments

scn101

Getting the hang of it

fay_dan

n3wb

alastairstevenson

whoslooking

Morkon

n3wb

devjatov.alex

n3wb

kitasaran

n3wb

alastairstevenson

kitasaran

n3wb

alastairstevenson

kitasaran

n3wb

Attachments

kseydou

n3wb

HoLeeShiet

n3wb

whoslooking