Use Xiaovv Q8 in VLC

[Matthias Heyneman]

Hi,

I bought the following IP Cam:
US$31.98 27% Xiaovv Q8 HD 1080P 360° Panoramic IP Camera Onvif Support Infrared Night Vision AI Mo-tion Detection Machine Panoramic Camera from xiaomi youpin Kitchen,Dining & Bar from Home and Garden on banggood.com

How can I use this cam in iSpy or VLC? Should I retrieve a rtsp url?

Thanks in advance
Matt

 

[alastairstevenson]

VLC? Should I retrieve a rtsp url?

Given it claims ONVIF compatibility, ONVIF Device Manager (sourceforge.net) should find it automatically on the same LAN as the PC.
Give ODM some logon credentials (top left of the window) and the RTSP URL will show at the bottom of the Live Video page.

 

[Matthias Heyneman]

Thanks for the reply !
It claims ONVIF compatibility, but unfortunately it does not.

 

[VorlonFrog]

Thanks for the reply !
It claims ONVIF compatibility, but unfortunately it does not.

It may have a non-standard ONVIF port number. Try running nmap/Zenmap against the camera to see which ports are open.

 

[Matthias Heyneman]

I discovered open port 8800
When I know try to connect to the rtsp
rtsp://admin:blablabla@192.168.1.27:8800/live/ch00_0
It gives me the error:
FFMPEG: OPEN_INPUT: Invalid data found when processing input

How do I proceed?

Thanks in advance !



nmap/Zenmap log:

Starting Nmap 7.80 ( Nmap: the Network Mapper - Free Security Scanner ) at 2019-08-30 07:44 Romance (zomertijd)

NSE: Loaded 151 scripts for scanning.

NSE: Script Pre-scanning.

Initiating NSE at 07:44

Completed NSE at 07:44, 0.00s elapsed

Initiating NSE at 07:44

Completed NSE at 07:44, 0.00s elapsed

Initiating NSE at 07:44

Completed NSE at 07:44, 0.00s elapsed

Initiating ARP Ping Scan at 07:44

Scanning 192.168.1.27 [1 port]

Completed ARP Ping Scan at 07:44, 0.17s elapsed (1 total hosts)

Initiating Parallel DNS resolution of 1 host. at 07:44

Completed Parallel DNS resolution of 1 host. at 07:44, 0.00s elapsed

Initiating SYN Stealth Scan at 07:44

Scanning 192.168.1.27 [1000 ports]

Discovered open port 8800/tcp on 192.168.1.27

Completed SYN Stealth Scan at 07:44, 0.39s elapsed (1000 total ports)

Initiating Service scan at 07:44

Scanning 1 service on 192.168.1.27

Completed Service scan at 07:45, 9.59s elapsed (1 service on 1 host)

Initiating OS detection (try #1) against 192.168.1.27

Retrying OS detection (try #2) against 192.168.1.27

Retrying OS detection (try #3) against 192.168.1.27

Retrying OS detection (try #4) against 192.168.1.27

Retrying OS detection (try #5) against 192.168.1.27

NSE: Script scanning 192.168.1.27.

Initiating NSE at 07:45

Completed NSE at 07:45, 0.01s elapsed

Initiating NSE at 07:45

Completed NSE at 07:45, 0.22s elapsed

Initiating NSE at 07:45

Completed NSE at 07:45, 0.00s elapsed

Nmap scan report for 192.168.1.27

Host is up (0.00048s latency).

Not shown: 999 closed ports

PORT STATE SERVICE VERSION

8800/tcp open sunwebadmin?

1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at Nmap Fingerprint Submitter 2.0 :

SF-Port8800-TCP:V=7.80%I=7%D=8/30%Time=5D68B7DC%P=i686-pc-windows-windows%

SF:r(SSLSessionReq,19C,"\x9c\xff\xff\xff\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0")%r(TLSSessionReq,19C,"\x9c\xff\xff\xff\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0")%r(LDAPSearchReq,19C,"\x9c\xff\xff\xff\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0

SF:\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\

SF:0\0\0\0\0");

MAC Address: BC:96:01:29:4B:EF (Unknown)

No exact OS matches for host (If you know what OS is running on it, see Nmap OS/Service Fingerprint and Correction Submission Page ).

TCP/IP fingerprint:

OS:SCAN(V=7.80%E=4%D=8/30%OT=8800%CT=1%CU=40074%PV=Y%DS=1%DC=D%G=Y%M=BC9601

OS:%TM=5D68B7EC%P=i686-pc-windows-windows)SEQ(SP=104%GCD=1%ISR=10D%TI=Z%CI=

OS:Z%II=I%TS=7)SEQ(TI=Z%CI=Z%II=I%TS=8)SEQ(CI=Z%II=I)OPS(O1=M5B4ST11NW0%O2=

OS:M5B4ST11NW0%O3=M5B4NNT11NW0%O4=M5B4ST11NW0%O5=M5B4ST11NW0%O6=M5B4ST11)WI

OS:N(W1=3890%W2=3890%W3=3890%W4=3890%W5=3890%W6=3890)ECN(R=Y%DF=Y%T=40%W=39

OS:08%O=M5B4NNSNW0%CC=Y%Q=)T1(R=Y%DF=Y%T=40%S=O%A=S+%F=AS%RD=0%Q=)T2(R=N)T3

OSR=N)T4(R=Y%DF=Y%T=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)T5(R=Y%DF=Y%T=40%W=0%S=

OS:Z%A=S+%F=AR%O=%RD=0%Q=)T6(R=Y%DF=Y%T=40%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)T7(R=

OS:Y%DF=Y%T=40%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)U1(R=Y%DF=N%T=40%IPL=164%UN=0%R

OS:IPL=G%RID=G%RIPCK=G%RUCK=G%RUD=G)IE(R=Y%DFI=N%T=40%CD=S)



Network Distance: 1 hop



TRACEROUTE

HOP RTT ADDRESS

1 0.48 ms 192.168.1.27



NSE: Script Post-scanning.

Initiating NSE at 07:45

Completed NSE at 07:45, 0.00s elapsed

Initiating NSE at 07:45

Completed NSE at 07:45, 0.00s elapsed

Initiating NSE at 07:45

Completed NSE at 07:45, 0.00s elapsed

Read data files from: C:\Program Files (x86)\Nmap

OS and Service detection performed. Please report any incorrect results at Nmap OS/Service Fingerprint and Correction Submission Page .

Nmap done: 1 IP address (1 host up) scanned in 24.97 seconds


Raw packets sent: 1108 (52.762KB) | Rcvd: 1118 (51.406KB)

 

[VorlonFrog]

That’s discouraging. Looks like it’s responding with null bytes no matter which probe is sent. Maybe try a puTTY/telnet session to port 8800 and see if anything is recognizable? I would not be too hopeful, though.

One last thing: it appears you only searched the lower range of ports. Try scanning through port 65535 and see if they’re hiding in the upper range somewhere.

 

[Matthias Heyneman]

That’s discouraging. Looks like it’s responding with null bytes no matter which probe is sent. Maybe try a puTTY/telnet session to port 8800 and see if anything is recognizable? I would not be too hopeful, though.

One last thing: it appears you only searched the lower range of ports. Try scanning through port 65535 and see if they’re hiding in the upper range somewhere.

Nothing recognizable. I give up I bought a cheap chinese cam, thinking that if it would show in the app, i can access it through rtsp and use it in iSpy.
What would you advice me to buy, to have a inside ipcam with rotation, that I can use in iSpy?

Thanks in advance.

 

[VorlonFrog]

Nothing recognizable. I give up I bought a cheap chinese cam, thinking that if it would show in the app, i can access it through rtsp and use it in iSpy.
What would you advice me to buy, to have a inside ipcam with rotation, that I can use in iSpy?

Thanks in advance.

Amcrest IP2M-841 for 1080P at a great price.
Amcrest IP4M-1051 for higher res at a higher price.
Both are made by Dahua, re-branded by Amcrest (Formerly Foscam USA) and highly reliable, high-quality cameras that provide ONVIF compatibility, and should work right out of the box with a minimal amount of TCP/IP network configuration.

 

[Matthias Heyneman]

Thanks for the advice !
But in europe, this cam is available for +- 100 EUR.
Which is a bit to pricy for me.

 

[VorlonFrog]

Thanks for the advice !
But in europe, this cam is available for +- 100 EUR.
Which is a bit to pricy for me.

Oh, darn it. Sorry about that. I forgot these aren't available under that name/brand in Europe.
Let me see if I can find it elsewhere at a more reasonable price.

POSSIBLY, the Dericam 1080P camera. It strongly resembles the Amcrest.
https://www.amazon.co.uk/Wireless-Security-Control-Digital-Alternative/dp/B07BDJXF3J

Found what I was looking for. Amcrest products are sold as FDT brand in Europe:
FDT 1080P HD WiFi PTZ IP Camera 2MP Indoor Wireless Security Camera - (FD8901B) | eBay

 

[VorlonFrog]

Hey, Matthias, any updates?