This error means?

in my log (httpd/error_log) :
ModSecurity: Access denied with code 403 (phase 1). String match “() {” at REQUEST_HEADERS:User-Agent. [file “/usr/local/cwaf/rules/01_Global_Generic.conf”] [line “76”] [id “221260”] [rev “2”] [msg “COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)”] [hostname “185..87._”] [uri “/”] [unique_id “VrQyG7kxV@UAAFpuPOIAAAA8”]

This error means?
I was attacked?
I’ve Blocked IP (client).
no successfull attack?

Your server was attacked by Shellshock Command Injection.
Our rule(s) protect from such attacks.
You can get more information from modsec_audit.log, using id “221260” as criterion for search and send this info if you need here or to https://support.comodo.com/

veryyyyyy goooood Thank you CWAF
1- No problem now?
2- Do not worry?
3- when display log (Access denied with code 403 (phase 1)) or (Access denied with code 403 (phase 2)) , this means Avoid been attacked?

Yes. Attack was stopped.
When “Access denied with code 403” is seen in error or mod_security logs it usually means that attack is prevented and ModSecurity works.
But sometimes it could be false-positive. It happens when “error 403” is given as reply to correct user request.

Thank you Thank you

comodo is very greeeeeeeeaaaaaaaat

very thank you
good luck.