Just to be contentious (or perhaps state the obvious it has been a while since I participated in the info sec discussion with people other than execs who don't want to spend any money because ["we haven't had an issue in more than a year"])
AV is now useless. Even with draconian settings it catches less than half of the threats in real time. By the time a signature that works gets there most crap has been on the box for over a day.
That said tell me what is wrong. Also what whitelisting products are good and why?