I think I downloaded spyware! I used a curl command in terminal given by a fake support user to download a .sh file
Stack Exchange network consists of 183 Q&A communities including Stack Overflow, the largest, most trusted online community for developers to learn, share their knowledge, and build their careers.
Ask questions, find answers and collaborate at work with Stack Overflow for Teams. Explore Teams
There's no need to post the script; I downloaded it. It's a highly obfuscated shell script that seems, most importantly, to do the following.
Second, it tries to send all the files in the Desktop, Documents, and Downloads subfolders of your home folder to the attacker. If you ran this script, you should assume that all those files are compromised, whatever that means to you.
It's probable that a browser master password, if you have any set, will protect the passwords but I wouldn't count on it. You need to change every password that has been saved in your browser, and log out from any sites where you are currently logged in. Well-designed sites invalidate sessions when you change your password, but that is not certain.
The OP's question was originally posted at Stack Exchange, where the following image was included. The image shows the output after executing the commands given in the OP's question. (Note: I redacted the IP address originally shown in the OP's image, because the same address has been redacted in the text of the OP's question.)
