A few days ago @nitr0us made some noise with something he found. It turns out that is possible to shutdown a ClamAV server by simply shoving over ‘SHUTDOWN’ to tcp port 3310. Although it is not recommended, of course people expose their instances so a NSE script had to be created 😉
Now included in the official repository: clamav-exec