One of the difficulties in removing malware is that malware writers like to name their bad files the same as or similar to legitimate files. Very often the only difference is the path to the file that determines whether it is good or bad.
I like using ComboFix because it dates the arrival time of all files, so if you see two bad files in a bunch of 6 files, all arriving in the same few seconds, the chances are that they are all bad. Sometimes that might not be true but I already spend 5 hours a day researching members' logs as a volunteer, I do have to impose time restrictions on myself otherwise I wouldn't have any sort of a life.
Of all the files that we deleted, they will be backed up at C:\!Killbox\ so putting them back onto the system is not a problem. You could try them all one by one if you wish, but I would take a gamble and go for sporder.dll and setup90.exe.