The write up by BAe is worth a read
Anyone only relying on AV should read the section entitled "Server-based polymorphism", think about it, go and change their trousers and start thinking about NIDs, egress rules on their firewall, and the whole panoply of stuff you really need to defend against the current swathe of baddies. Oh and sort out your backups while you are at it.