I noticed this bug I can't figure out . . . I'm using v2.4 with SMF 1.1.12.
There are a lot of different questions there. Let me try to answer them one by one:
First, I have "Number of days to consider good an IP" set to 40, so why is this user being triggered?
All the entries from this user are inside the "Humans log". That means the user has not been bothered at all. He has never seen the warning page or noticed anything wrong.
The entries are logged anyway so you can see somebody has been in your forum with some data inside the spammers DB in Project Honey Pot, but the log is telling you that, as the "number of days..." was bigger than 40, the mod didn't stop the user.
Why does it say 65 days at 5pm, but 71 days for the other times?
Unfortunately, the connexion with Honey Pot's DB is not 100% perfect all the time, so every now and then there is a mistake like that.
You need to remember there are thousands of people using that DB every day. Only here in SMF the last count was more than 1500 forums using it, and there are mods using that DB for almost all other forums, CMS programs (Mambo, Drupal, Joomla, etc), Blogs, etc.
If too many people try to access the DB at the same time it is possible one of the answers is wrong. That's the reason why this mod never do anything too drastic (like banning a user forever or giving a "free pass" card to somebody forever) but always try to confirm if it's true we are dealing with a spammer or a good guy.
I have 'Hours until an IP needs to prove again it's human" set to 48 hours, so why is it repeatedly triggered?
The cookie you are talking about is only given to users who have actually proven they are human.
This only happens when they see the warning page and they answer the 2 questions to prove they are human. Anybody in your forum in that situation won't see the warning page again for 48 hours.
This user you have here in your logs has never seen the warning page, so he hasn't really proved he's human. You cannot be really sure if it's actually the human user who is visiting your forum or if it's a trojan inside his computer, acting as the user but without the user's knowledge.
When the mod cannot be sure if a visitor is human or robot, it puts the data in the cache, instead of giving a cookie to the visitor, so it will be checked again when the cache expires (default is 5 minutes) not when the cookie expires.
When something like that happens in my forums I contact as soon as possible the users (if I can) to let them know they may have a trojan in their computer.
When the users answer me saying they have checked the computer and there is no trojan there, I move them (if I really trust them) to one of the "trusted" member groups I have in my forums, so they won't be checked by the mod ever again.
You need to remember (from version 2.4 onwards) I have added a new permission you can set for all the member groups you really trust, so the mod won't check them. But you need also to remember that sometimes people cannot really recognize a trojan inside their computer.
I have friends who have told me they haven't got any viruses in their computers but, when I have checked their computers myself, I have found some. I trust those friends for anything else, but I don't "trust" them recognizing viruses or trojans.
Second, if I click httpBL Humans Log, and then click on any page number, it'll incorrectly jump to that page number for httpBL Spammers Log instead.
That bug was reported a couple of weeks ago here
I have it already sorted in the next version I am doing for this mod. This new version should have been already published but, every time it's almost finished, I find something else I need to change or fix, so it's taking me longer than I thought.
In the mean time, before I finish this new version, you can patch it manually following these instructions:http://www.simplemachines.org/community/index.php?topic=366399.msg2857312#msg2857312