Quote from: oxiD on August 04, 2013, 08:39 pmJavascript is disabled on my side, and at worst they will have the IP of my VPN!At worst they could have grabbed your cookie session, recovered your system encryption password in a memory dump, placed a keylogger or other malware on your machine and bypass the VPN for all we know as the full extent of the package has not yet been fully analysed.