Now you can remember what i said some lines before. The asm runs from top to bottom (i like call it T2B hehe). That means that the jne/je we have to change is anywhere up. But how we know which it is? Now we can try to change everyone we see (like try and error) or we use the "Goto CD Loc" (Goto code location) button on the top. We click on it and a little window pop up. On bottom right of the window is a text box "Code Offset (Hex)". Now we take a look on the asm-code. We can see the line "* Referenced by a (U)nconditional or (C)onditional Jump At Adress:" then the line next where is the adress we have to know "|:00413A82 (C)". Thats the number we have to enter in the code location window its 00413A82. At this adress we`ll find the jump which will send us every time to the error message if we enter the wrong code. Click on ok in the code location window.

Now you are anywhere up in the asm-code. The Bar is on the line which let us jump to the message. Its a jne (jump if not equal).The Bar changed his color to green (he`ll do that only at jump/calls. Now look down on the bottom of the screen. There is a line which looks like:

Line:34985 Pg 467 of 998 Code Data @:00413A82 @Offset00013082h in File:Winrar95.w32

The only thing what we`ve to remember is the number after the @Offset. Its 00013082 (the Bar have to be on the jne). Write it down (you dont have to remember all the 000 its enough when you remember only 13082).

Ok now go to HIEW (you dont have to close W32Dasm). Its no matter which kind of exe you start (if H.exe or H95.exe). In HIEW (its like Norton Commander) you can trace through the directorys. Go to your WinRAR directory and click on your WinRAR95.exe. Hmm! dont know what that is huh? Click on F4 (select mode window) and then chose "decode". The screen change. You can now see all the jne/je/eax commands and have to click on F5. On the top left corner you can now enter the @Offset number (you wrote it down a few seconds before). Here its no matter if you type the 000 or if you type only 13082. Type 13082. You are at the jne command. Now click on F3 (edit). Now you`re able to change the value. Change it from 75(jne) to 74(je) and click on F9(update). Then click on F10. You have changed the value of jne. Now you can test if it work. Click on your WinRAR95.exe.

But there is a second. Also we can kill the Unregistered status on the top of the window. We`ll do that now.

Load your uncracked save copy of WinRAR95. If you start it you can see on the top a message which tells you that its a (unregistered version). Go to W32Dasm and load your WinRAR95.w32 file. Now click on String Data References Button. Look for "(unregistered version)" (it have to be exactly unregistered version) cause there are two of them!. Do you found it? Doubleclick on it.You was warped to the point where is it. Its like before. You have to do the same thing like before. You see the "*Referenced by a (U)nconditional or (C)onditional Jump At Adress:" line? Click on "Goto code location"button and enter the number. Its
00418AAA and click on ok. You was warped to the point which let the asm-code jump to the message if it is not registered. Its also a jne (jump if not equal) command. Write down the @Offset number its 000180AA (you can leave the 000 alone). Go to HIEW, load your WinRAR95.exe, click on F4 (decode), then on F5 (goto), enter 180AA and click on enter.
You`re at the jne command. Change the value of jne to je (75 to 74) save it and leave HIEW.

Remember that if you want to manipulate a exe like WinRAR you have to close winRAR on Windows desktop or you`ll recieve a message like "error only read mode". Now if you changed the value you can test if it works. Start your WinRAR95.exe and you see that the message is no more. We killed it. Now you have no message on the top and you can enter any name and code and it`ll unlock WinRAR95. The same way you`ve to do on normal WinRAR. Everytime if you want to crack a simply protection you can use this way.Change jne/je to je/jne. Or to nop it.