Tvheadend

As long as you don't have open access (All accounts should have strong passwords) you should (see note below..) be fine.
It looks like someone is testing for vulnerabilities to gain higher access to your system & is obviously failing.

If you're really worried install csf/lfd

* I cannot guarantee the security of your system, if someone really wants access to your system they'll find a way.

You're probably just being scanned - If you don't use a firewall, don't expect to be anonymous on the internet.
The status code for the first request is 404 not found (it passed http://google.com/ as the url to be requested from you), and for the second one 401 authorization required - meaning he didn't manage to log in.

1. use complex usernames / passwords (not dictionary based ones)
2. restrict access to certain ips only, if you can
3. csf/lfd as has been suggested, or fail2ban

I'd actually be more worried about ssh scanning / bruteforcing.

superuser account, rest just users

superuser is in

/home/hts/.hts/tvheadend/superuser

Thanks for the replies. I think I'll restrict the IP range that has access to the web interface. I've already dealt with SSH bruteforcing, which was quite a problem (used 10% of my CPU and I got tens of requests every minute).