Are all stored passwords encrypted?

All passwords are encrypted by AES and stored in User.xml. Windows OS user passwords are encrypted by DES.