What are the key steps in the program implementation for deleting EVT logs within a specified time range?

The program traverses all log records in the EVT file until it reaches the end‑of‑file record (identified by `TimeGenerated == 0x33333333`). For each record, it checks whether `TimeGenerated` falls within the user‑specified time range; matching records are deleted. The remaining logs are copied into a new array using `memcpy`. After filtering, the record numbers of subsequent logs are decremented by the number of deleted entries, and the file header fields (End of file record offset, Last record number, Maximum file size) and the end‑of‑file record fields are updated accordingly. This approach is documented in the Windows Event Viewer Log (EVT) Single Log Deletion (Part 2).