CAPTCHA (Completely Automated Public Turing Test to Tell Computers and Humans Apart) is a security mechanism designed to differentiate between humans from malicious bot program. Captcha's are the security checks which prevents spammers and hackers from getting the important data from the web pages through this malicious code or robotic software program. Text-based captcha's were most widely deployed across the web to secure against malicious bot programs. Numerous successful attacks on this single layer text-based attacks were deployed by Google, Microsoft, Yahoo, Amazon, and other Internet giants. These attacks on text-based captcha's achieved a success rate from 5% to 77 % in less than 10 seconds on a standard desktop computer (with 3.5 GHz Intel Core i5 CPU and 8 GB RAM). In 2015 Microsoft deployed a new two-layer Captcha scheme which was more difficult for bots to attack. But recent survey state that the two-layer Microsoft's Captcha can be attacked with an average speed of 9.05s on a standard desktop computer. In this paper, Microsoft two layer captcha is analysed studied and new multilayer captcha is being proposed which will make bots difficult to attack the Captcha and get the important data from web maliciously. The proposed Captcha will be composed multilayer text-based captcha combined with an image which can be solved using a checkbox. The proposed captcha can be solved by humans in less than two seconds but will be very difficult for bots to solve. The proposed captcha is also time-based which should be solved within 10 seconds which will make bots even more challenging to attack the captcha. © 2019 Newswood Limited. All rights reserved.