Just would like to point something out just to have for reference in the future. Under the CFAA, it is a federal crime to "intentionally access a computer without authorization or exceed authorized access" This very law applies to putting a backdoor in a plugin to then send back to a server administrator. If the server owner wanted to pursue this you could face federal hacking charges. I suggest in the future you do not share your account that way you never put yourself in a situation where this can happen. This thread should be locked now.