and the fine print says.....
Please take in mind, however, that RAR encryption is VERY strong, and even on very fast CPUs it is possible to test not more than a few thousand passwords per second. So brute-force attack is effective for short passwords only (up to 5 or 6 characters), and if the password is longer and dictionary attack didn't help -- you're out of luck.