Timeout or stuck at first PIN

[GoogleCodeExporter]

0. What version of Reaver are you using?  (Only defects against the latest
version will be considered.)

1.4 that comes with bt5, but I also tried with rev 113

1. What operating system are you using (Linux is the only supported OS)?

bt5 r2/ubuntu 11.10

2. Is your wireless card in monitor mode (yes/no)?

yes

3. What is the signal strength of the Access Point you are trying to crack?

-66 / -70

4. What is the manufacturer and model # of the device you are trying to
crack?

Netgear routers and routers provided by providers

5. What is the entire command line string you are supplying to reaver?

reaver -i mon0 -b 00:23:8E:4A:FB:60 -c 1 -vv

I tried every option..

6. Please describe what you think the issue is.

Since I started using reaver I wasn't able to get anything out of it.
I have 4 networks with WPS (shown in Wash) , only with one I was able to 
communicate pins but the process got stuck at 90.90% and kept repeating the 
same PIN.
With the other 3, 2 hang at the first PIN and doesn't go further. The other one 
keeps repeating the first PIN . I tried with both Ubuntu 11.10 and Backtrack 
each with 2 usb adapaters rt2800usb and ath9k with same results

7. Paste the output from Reaver below.

The one that hangs:

Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner 
<cheffner@tacnetsol.com>

[+] Switching mon0 to channel 1
[+] Waiting for beacon from 00:23:8E:4A:FB:60
[+] Associated with 00:23:8E:4A:FB:60 (ESSID: Alice)
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response

it stays like this forever

The others keep doing this

Reaver v1.4 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner 
<cheffner@tacnetsol.com>

[+] Switching mon0 to channel 1
[+] Waiting for beacon from 00:24:89:12:53:2F
[+] Associated with 00:24:89:12:53:2F (ESSID: Vodafone)
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[!] WPS transaction failed (code: 0x02), re-trying last pin
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[!] WPS transaction failed (code: 0x02), re-trying last pin
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[!] WPS transaction failed (code: 0x02), re-trying last pin
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
[!] WARNING: Receive timeout occurred
[+] Sending WSC NACK
[!] WPS transaction failed (code: 0x02), re-trying last pin
[+] Trying pin 12345670
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[+] Received identity request
[+] Sending identity response
^C
[+] Nothing done, nothing to save.

The APs I tried are all stable with good signal and RXQ usually at 100%, 
sometimes 90%.I also tried to associate them with aireplay-ng in the background 
with no difference. When I try to test the signal with aireplay-ng (-9) it says 
100% injection with pings below 30ms!.
Could it be they're actually not using WPS?

Original issue reported on code.google.com by livewin...@gmail.com on 28 Mar 2012 at 4:03

[GoogleCodeExporter]

i have exactly the same problem as you
im using bt5r2 gnome x86 (fully updated)
my adapter is wusb600n v2 (RT3572) chipset
tired with and without aireplay and i changed my -d to higher numbers and i 
used --no-nacks with and without and also the same with --win7

just keeps repeating on my belkin 4031 router i think it is with belkin 
firmware and i do have wps enabled

Original comment by tdbo...@gmail.com on 22 Apr 2012 at 8:50

[GoogleCodeExporter]

[deleted comment]

[GoogleCodeExporter]

Use --no-nacks. You may also need --no-associate and have aireplay-ng 
--fakeauth running.

Original comment by weedy2...@gmail.com on 26 May 2012 at 1:58

[GoogleCodeExporter]

I can confirm this issue on kubuntu 11.10, running reaver version 1.4. I have 
"Broadcom Corporation BCM4313 802.11b/g/n Wireless LAN Controller" wifi card 
using driver "brcmsmac". Though in my case signal quality is not that good: 
"Quality=32/70  Signal level=-78 dBm". Also wash doesn't show any network while 
scanning but I am pretty sure there at least 2 networks that have wps (Or at 
least this is what wireshark tells me).

Original comment by jamil.fa...@gmail.com on 16 Aug 2012 at 5:19

[GoogleCodeExporter]

same issue here.
any solutions yet?

Original comment by radutmar...@gmail.com on 8 Jan 2015 at 4:22