diff --git a/ushio/www/api/getVisitNum.php b/ushio/www/api/getVisitNum.php
index ba0e9bbe..97aa69d9 100644
--- a/ushio/www/api/getVisitNum.php
+++ b/ushio/www/api/getVisitNum.php
@@ -2,10 +2,10 @@
 include 'functions.php';
 
 /* anti ddos */
-if(!isset($_COOKIE['_token__']) || $_COOKIE['_token__'] != md5(date('Y-m-d-H').$_SERVER['REMOTE_ADDR'].$_SERVER['HTTP_USER_AGENT'])) {
-    setcookie("_token__",md5(date('Y-m-d-H').$_SERVER['REMOTE_ADDR'].$_SERVER['HTTP_USER_AGENT']),time()+1*3600);
+/*if(!isset($_COOKIE['_token__']) || $_COOKIE['_token__'] != md5(date('Y-m-d-H'))) {
+    setcookie("_token__",md5(date('Y-m-d-H')),time()+1*3600);
     header("Location: https://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'], true, 301);
-}
+}*/
 
 
 header("Access-Control-Allow-Origin: *");
diff --git a/ushio/www/api/img/index.php b/ushio/www/api/img/index.php
index b51513be..0f7823ac 100644
--- a/ushio/www/api/img/index.php
+++ b/ushio/www/api/img/index.php
@@ -3,10 +3,10 @@
 include '../functions.php';
 
 /* anti ddos */
-if(!isset($_COOKIE['_token__']) || $_COOKIE['_token__'] != md5(date('Y-m-d-H').$_SERVER['REMOTE_ADDR'].$_SERVER['HTTP_USER_AGENT'])) {
-    setcookie("_token__",md5(date('Y-m-d-H').$_SERVER['REMOTE_ADDR'].$_SERVER['HTTP_USER_AGENT']),time()+1*3600);
+/*if(!isset($_COOKIE['_token__']) || $_COOKIE['_token__'] != md5(date('Y-m-d-H'))) {
+    setcookie("_token__",md5(date('Y-m-d-H')),time()+1*3600);
     header("Location: https://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'], true, 301);
-}
+}*/
 
 
 header('content-type: image/png');
diff --git a/ushio/www/api/msc/index.php b/ushio/www/api/msc/index.php
index 51d278e3..7ecf6cab 100644
--- a/ushio/www/api/msc/index.php
+++ b/ushio/www/api/msc/index.php
@@ -3,10 +3,10 @@ header('Access-Control-Allow-Origin:*');
 
 
 /* anti ddos */
-if(!isset($_COOKIE['_token__']) || $_COOKIE['_token__'] != md5(date('Y-m-d-H').$_SERVER['REMOTE_ADDR'].$_SERVER['HTTP_USER_AGENT'])) {
-    setcookie("_token__",md5(date('Y-m-d-H').$_SERVER['REMOTE_ADDR'].$_SERVER['HTTP_USER_AGENT']),time()+1*3600);
+/*if(!isset($_COOKIE['_token__']) || $_COOKIE['_token__'] != md5(date('Y-m-d-H'))) {
+    setcookie("_token__",md5(date('Y-m-d-H')),time()+1*3600);
     header("Location: https://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'], true, 301);
-}
+}*/
 
 
 require 'vendor/autoload.php';
diff --git a/ushio/www/api/words/index.php b/ushio/www/api/words/index.php
index dd21ad80..4ee76298 100644
--- a/ushio/www/api/words/index.php
+++ b/ushio/www/api/words/index.php
@@ -3,10 +3,10 @@
 include '../functions.php';
 
 /* anti ddos */
-if(!isset($_COOKIE['_token__']) || $_COOKIE['_token__'] != md5(date('Y-m-d-H').$_SERVER['REMOTE_ADDR'].$_SERVER['HTTP_USER_AGENT'])) {
-    setcookie("_token__",md5(date('Y-m-d-H').$_SERVER['REMOTE_ADDR'].$_SERVER['HTTP_USER_AGENT']),time()+1*3600);
+/*if(!isset($_COOKIE['_token__']) || $_COOKIE['_token__'] != md5(date('Y-m-d-H'))) {
+    setcookie("_token__",md5(date('Y-m-d-H')),time()+1*3600);
     header("Location: https://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'], true, 301);
-}
+}*/
 
 
 header('Access-Control-Allow-Origin:*');