diff --git a/README.md b/README.md
index e864e58..0b1ab85 100644
--- a/README.md
+++ b/README.md
@@ -263,6 +263,10 @@
 
 ![Screenshot](pic/3.png)
 
+![Screenshot](pic/4.png)
+
+![Screenshot](pic/5.png)
+
 ## 参考链接 ##
 http://www.chkrootkit.org
 
diff --git a/lib/core/data_aggregation.py b/lib/core/data_aggregation.py
index a21e766..5a4de8a 100644
--- a/lib/core/data_aggregation.py
+++ b/lib/core/data_aggregation.py
@@ -32,7 +32,7 @@ def agregation(self):
         say_info, i = u'-' * 30 + u'\n', 1
         say_info += u'根据系统分析的情况，溯源后的攻击行动轨迹为：\n'
 
-        programme_info = u'\n初步处理方案如下(注：请在信息核实后操作)：\n'
+        programme_info = u'\n初步处理方案如下(请在信息核实后操作)：\n'
 
         self.result_infos.sort(cmp=self.cmp_datetime, key=operator.itemgetter(u'异常时间'))
         for result_info in self.result_infos:
diff --git a/pic/1.png b/pic/1.png
index e89d33b..13e4b16 100644
Binary files a/pic/1.png and b/pic/1.png differ
diff --git a/pic/2.png b/pic/2.png
index 9d5333f..d5b53c9 100644
Binary files a/pic/2.png and b/pic/2.png differ
diff --git a/pic/3.png b/pic/3.png
index cd182e3..ad999da 100644
Binary files a/pic/3.png and b/pic/3.png differ
diff --git a/pic/4.png b/pic/4.png
new file mode 100644
index 0000000..b8663ba
Binary files /dev/null and b/pic/4.png differ
diff --git a/pic/5.png b/pic/5.png
new file mode 100644
index 0000000..e6dfe68
Binary files /dev/null and b/pic/5.png differ