ANECompilerService

ANE _might_ stand for "Adobe Native Extensions", but if you don't have Adobe software installed, and especially if you have no extensions installed, that's very unlikely to be the problem.

ANE also stands for "Apple Neural Engine", and since the crashing code is in a folder named "AppleNeuralEngine", you can bet that this is the problem. Apart from that, no idea what the problem is - best idea would be to upgrade to the latest iOS version and pray that the problem has been fixed. Or another factory reset, and be very, very, very careful what you restore. Because anything causing the problem might be in some file that gets backed up.

All AI hype aside, Apple has been using machine learning for a while now. Why do I mention AI and ML in this context? Because that all preferably runs on processor cores tailored for and dedicated for running machine learning algorithms. Specialized processing cores which Apple calls Neural Engine.

How does ML code run on NE? It gets compiled.

Want to learn more about iOS and iPadOS and macOS, and about ML and NE?

• Jonathan Levin’s three-volume New OS X Book (which also covers iOS and iPadOS)

I have three more links with more info, but the forum software persists in corrupting the links.

https://machinelearning.apple.com/research?domain=Computer+Vision&page=1&q=neural+engine

The forum software or Safari is unfortunately broken.

https://github.com/apple/ml-ane-transformers

There is a bug here.

https://github.com/hollance/neural-engine

A bug somewhere.

About forensics and hacking?

https://www.sans.org/cyber-security-courses/mac-and-ios-forensic-analysis-and-incident-response/

As for the rest, I don’t think anybody here really cares if folks read the logs and telemetry. By all means, have at. It’s the history of requests posted for help with seemingly endless screenshots of, well, nothing. Benign. Normal. Or flaky hardware.

It somewhere between difficult and impossible to prove a device is not hacked, too. Proving a negative is hard.

It’s also that some folks report having been hacked for six months or a year or longer. Having previously received assistance or suggestions. Some of those folks may well be hacked. Others can have other issues. And there are those that have multiple platforms they report are compromised.

iOS and iPadOS exploits are Really Expensive (full stack exploits with persistence were worth over two million dollars each, when last I checked), and those tend to be targeted as the vendors don’t want those investments patched and rendered less valuable. The more platforms, the more effort and costs. The more valuable the target, if the hack actually happened. Or they got black-bagged or otherwise.

Past links and suggestions such as the Personal Safety Guide and Safety Check, if folks’ devices are actually hacked, or if so if somebody got black-bagged or gaslight by folks with local access, nobody here can help. Not past the usual reset-and-reload-and-related suggestions. Forensics investigations need direct access, and are about as privacy-invasive as can be conceived, too. If multiple disparate devices and platforms (and Google IDs, Apple IDs, and other IDs) are hacked as can get claimed around here, nobody here can help. Same for cases involving thefts and burglary claims. Cases involving bad batteries are reported as hacks, too. And if otherwise benign or normal things are being persistently misinterpreted and not actually hacked, nobody here can help with that, either.

Restricting comments to those permitted here, you should update your iPad to the current version (noting that iPadOS 16.3.1 is currently installed on your iPad). At the time of writing, this current version is iPadOS 16.4.

Having updated to the current version, if concerns remain, perform a full reset of the iPad before restoring from an iCloud or iTunes backup:

Settings > General > Transfer or Reset iPad > Erase All Content and Settings

LM-OB wrote:

The advanced technicians at Apple Support keep trying to convince me this is ‘normal’ but of course it isn’t because the start of the log states “roots installed”.

Look a little closer - and the complete field (that you partially quote) likely states “roots_installed":0.

This “0” indicates that there are no kernel roots installed. An integer value of 1 or greater indicates presence of a root.

Just curious how many people experiencing this issue had work from home jobs. I’ve never had this problem prior to starting a work from home job. I had a separate iPhone which I owned purely for WFH purposes and a personal iPhone. I called Apple support regarding my personal phone and they were unable to do screen sharing to look at it and advised me my device is managed and to have a chat to my employer. (I had never connected my personal phone to the same wifi network that I used for WFH). That didn’t go down well. I used an old iPad for teams for work and saw Pegasus in the logs, and found a virtual machine had been installed on my Mac Book. After numerous factory resets both by myself and Apple Store it still got reinfected. I too my Mac Book to a third party computer technician they removed Pegasus and the Virtual Machine, and it was back on within days. I had yubikeys setup on an old iPhone I had with my first ever Apple ID and my youbi keys had been removed off the device. I had to install Watchguard Authpoint on my work iPhone and I think this is somehow being exploited to get Device and network ID’s. Every device I own has been compromised, really curious to see if other people experiencing this had work from home jobs at some stage.

@gravityfed

You weren't paranoid or in the wrong for asking. Yes, it's compromised. As I have found out the long, torturous and painful way of finding out that Apple will not tell or even confirm if your account is compromised. Nor tell you what devices, telephone numbers, email addresses are attached to your account. ONLY CONFIRM. Plus when you call Apple Support, even a Senior Advisor will only go as far as telling you to wipe aka factory reset. But they will twist it to where it's an error on your part and always answer a question with a question. It's bogus.

I share your pain, in an effort to mitigate the ongoing assault I purchased a windows machine 2 days later they hacked and destroyed the directory and the thing won’t even turn on. This is what I have gathered. Antivirus is of no help because the attack is through legitimate Apple processes however weaponized antivirus isn’t going to catch it. Some things to look at are your keychain, if your like me mine is persistent beyond erase and restore, it contains Kerberos SSO tokens, rsa keys, and has “shared keychain” entries as well as MDM profiles, take a look at directory services as my devices have all been bound to a network domain and truly that’s the issue. If one can unbind their devices the keychain issue would as well be remediated. To touch on your comment about windows I believe they are able to hack those devices by having access to my keychain getting my windows password and walking right through the front door. To make the whole issue almost impossible the domain administrator within mere minutes of boot from new os takes root which btw is surly the developer user account in my device and destroys my path variable so terminal commands don’t work and I’m cooked. The cherry on top is writing plist files to disable anything I try and download to mitigate ie antivirus, little snitch etc. I’ve fought this for over a year and things have escalated to the point it’s war with my only tool erasing to which I recently noticed while reinstalling and looking at the recovery logs a bridged connection hiding volumes as I’m installing Mac OS! So they are in the device before I can even put as user account in which makes sense being their the network admin. Find a freelance cycber security professional and an ethical hacker and fight back. Take control of your devices because this will follow you to windows to Apple and back. Ditching Mac OS and getting an iPad Pro isn’t bad idea as they can’t take root and destroy you before you even start. Lastly if anyone reads this and wants to make a snied comment about how this is impossible, if I were you I’d save it I’m tired and you won’t like my rebuttal.

gravityfed,

I read a couple of your posts. They are so helpful. I might have said this before but thank you for taking the time to include this information. I wanted to share a life-changing bit of inask if you knew that there is a way to capture a sysdiagnose on an iPhone using only the iPhone itself? You may already know but I’m going to include it here as so many other users have gravitated to your posts. I mentioned this before and advised the community to “google it” but it was so helpful I wanted to post it here.

In Settings, tap Accessibility then Touch.

On the Customize Top Level Menu screen, tap the + button to add a new function and select Analytics. Analytics is now added to top menu for assist. You can tap the Back button to leave that menu.

I’ve seen a couple different ways to do this so I’m going to put here what worked for me. After turning on touch assist I went to my Home Screen then proceeded to do the following:

Press and hold both, volume up and volume down buttons and the power button until you feel a short vibration. (Has to be all three buttons.) This triggers the sysdiagnose. When you release the buttons slide to shutdown.

when the phone is turned back on double tap the assistive touch icon and “gathering analytics” appears at the top of the screen. This can take up to 10 minutes. Log files are captured. When it’s done a notification- “finished gathering Analytics” appears. Go to Settings and Analytics Data in Analytics and Privacy. Scroll down to the SysDiagnose entry and send it back to your phone. I just save to files.

I was shocked when I saw the device tree connected to my phone. The configurations and sophisticated software and processes running in my devices confirm “they” are spending enough to feed a small country with the fortune being blown to target and monitor my communications and track and follow me, a single mom with a little girl. It turns out many reporters, journals and activists are targeted like this. I’ve had a lump in my throat and a knot in my stomach since this began 5 yrs ago.

But this handy little system check was a God-send and I hope it helps someone else!

Unless you have appropriate specialist expertise/software with which to analyse and understand system generated Analytics or Sysdiagnose logs - they are of limited value to an untrained observer.

Without expert knowledge, these logs often do nothing more than create insecurities and paranoia for faults or issues that may not exist.

@Gravityfed then what is the solution to do if it gets hit by the malware