My first thought was to bypass this script ... - Check wich website it's accessing. - Edit your host file set the website to 127.0.0.1 (localhost) - run a wampserver or something like that - create a page that returns "VALID" And so it's bypassed. The problem is that there isn't any validation on the client side (your bot). Anyhow, just wanted to share my thoughts, hope it helps.