I have been wondering how they do it for some time. The thing is that I can easily use a group of hacked PCs to randomly click ads through a normal IE. I am not really sure how Google would be able to find out which clicking PC is a bot and which is a real person.

There is one other solution though, which seems to gain credibility through this post on Webby Thoughts.

_It makes me wonder whether Google has algorithms in place to notice when certain posts get traffic spikes and consider a higher percentage of those clicks as invalid clicks._

That is exactly the thing and the only thing how this can work. They will just monitor traffic over the entire network and they for one know that distribution of ads and distribution of content will remain relatively stable, so if something spikes in the distribution curve then they will presume it to be fraud and remove the spike. That seems what has happened in the above case.

This also means that if you suddenly have a short spike in your traffic this will probably not result in too much additional revenue, which will only come if the spike is not a spike but a real continuous growth in traffic.