Updated for Python 3, addl tweaks

[digitalsleuth]

Not sure if you're looking for any pull requests or assistance on this, but I was messing around with the USN Journal the other day and thought I could help bring this up to Python 3 spec.

Modified the epoch timestamp for milliseconds, added the filetime timestamp as the "timestamp" value (the hex version, as it exists on disk / in the file), removed the Python 2 future and Unicode requirements (u''), and re-ordered the JSON output to show more relevant data first (personal preference, can be reverted by removing two lines).

Added a missing Attribute (INTEGRITY_CHANGE) and did some PEP8 cleanup.

Hope this helps!

[PoorBillionaire]

Nice, thank you! I'll have a look at this tonight and get it merged.

[PoorBillionaire]

Been busy but this is still on my mind.

Adam

[digitalsleuth]

No worries at all, I definitely get being busy :)