So, I was digging around with some tools from Nirsoft on my company laptop to see if I had left anything of value saved unintentionally, when I run across my company username and password stored in plain text. How it got there is because I use RPC/HTTP to get my Exchange mail on my laptop and at some point when I was logging into it, I must have clicked save password. With RPC/HTTP you cant actually get Outlook to use your saved password, but it does save a copy of it if you tell it to. The weakness that I see is that the password is stored by Windows in plain text. Or at least,NetPass recovers it in plain text. For those of you out there running Outlook with RPC/HTTP, run that utility and see if it recovers your actual domain information. BTW, this worked on 4 different laptops belonging to security minded people.