2011.php isn't a valid UBB.threads file; seems someone either exploited something on the server or uploaded the file to the server and chose that folder to store the file in as it's not generally accessed by anyone doing anything other than upgrading a site.

You should ask them to look at your server logs for any type of activity around the time that the file was created.

To change the MySQL password, you'd just simply open the /includes/config.inc.php file and change the password line, after updating the password through the MySQL settings page supplied by your host.

I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Do you need Forum Install or Upgrade Services?
Forums: A Gardeners Forum, Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!