Leverage /../../etc/passw, chcek for private keys in their home directories
Use C:\Windows\System32\drivers\etc\hosts to validate the vulnerability
IIS web server you can check these log files
C:\inetpub\logs\LogFiles\W3SVC1\
or
C:\inetpub\wwwroot\web.config