that's not a log from a web server, it's just someone locally updating the system with up2date... you? i assume that could originate to a little system tray icon telling you you had system updates to apply, and so you told it to apply them?
the other one is someone trying to start ssh when it's already running, no reason to think there's anything malicious about that... dumb maybe but not malicious.