Only the exit node has access to your content, middle man nodes can't inject information since the stream is encrypted. You could disable javascript or keep the java console open, then atleast you'd see if this attack took place. -Jon