Windows 7: help showing all hidden files from CMD

last night i got the S.M.A.R.T Virus. i got it removed ok i think, but now is the fun part, it hides ALL your files. the only reason im typing this now is because i showed hidden files.
is there a way from CMD to unhhide all files that arent meant to be hidden by windows? (meaning i still want things like desktop.ini to stay hidden)



i know there are programs that will do this for you, but i would rather just do it from cmd if possible

To unhide a file: Start an Elevated Command Prompt and type the following command:

attrib -h "filename"

where filename is the file you want to unhide.
To unhide a directory and all its files within:

attrib /d /s -h "directoryname"

Also, many of these viruses cause the system switch to be applied so a simple -h does not do the trick. You may have to use -h -s instead of just -h

You can also use "Unhide" (http://download.bleepingcomputer.com/grinler/unhide.exe) (by Grinler)
Once the program has been downloaded, double-click on the Unhide.exe icon on your desktop and allow the program to run. This program will remove the +H, or hidden, attribute from all the files on your hard drives. If there are any files that were purposely hidden by you, you will need to hide them again after this tool is run."

used that a little while ago, still id like to know what scripts they used to acheive this, or of an ini i could make to do this

Well that is the 'developer's' inside secret and we don't discuss scripts or anything else that has to do with detecting or possibly 'outwitting' malware.

im sorry? its not outwitting malware, i used to know it, its unhiding files, thats no different than what it has done but in reverse. forget developers inside secrets, thats not maleware, thats an ini, if this where maleware i would have to create a hidden executable or a trojan executable.

its not that hard, when i used to know how to do it, i remember it being a 1 liner, less than 200 characters

edit: nor is it detecting, it is somthing i can drop in cmd, they threw some fancy text in their program, that doesnt make it malware detection, that makes it text that does nothing while the real script is executed

thank you, did not see your post at first, ill write that down, that sounds like the command i used origonaly with a previous virus that infected thumb drives

No problem. Glad you remember using it now. I've used this on a number of systems infected by these types of viruses. The OS Security 2012 virus is the most common of these types. It usually includes having to redo permissions for the users within the Windows files and the users' files, as well.

good to know, thank you again, supprisingly, right as i was getting ridof the virrus, someone else on here got it, so imm gunna try and help them, and recomend this command, i trust knowing what im doing more than some random exe by someone with no name.

There is an unhide tool used by GFI, who owns the VIPRE Antivirus and Internet Security 2012 software. That's at least by a known company who produces security software. Fakerean removal tool