Frank,
Read this carefully:

0) Take a copy of your pages somewhere else(backup)
1) Remove ALL ads from your pages
2) Login to AdSense and put payments on hold
3) Contact Google with links to the backup
4) Make a backup of your site stats and also send google a link to them.
5) Look in similar sites to yours and see if you can find the pubid on your site in any of them
6) Cross your fingers that it all makes sense to Google and there was no click fraud, as they expect site owners to have full control on their pages, if employee theft or hacking happens, it is you that is responsible, your best chance is to IMMEDIATELY show good faith and collaborate.

Don't expect Google to tell you who owns that other account, you'll need to do your homework on that by investigating your employees, the history on their computers, scan for trojans, and similar sites to yours, who owns them..

Also don't lose hope as the most Google cares about is click fraud, and this is not necessarily what happened in your account (you'll never know), your case is just hijacking or traffic theft.

Good luck.

the condition itself seems so hope less.

we cannot put eye on every moment of the tech employee and if we dont allow them to access files ..then th work will be stopped..
actually we have been good customer of google from some years recieving good amoung every day..
so even 25% fraud is big sum...
so cannot control

the domain we are taking about has been used by us (the pubid) from many years ..and we have recieved money for it from google from long time...and even now about 85% of the ad in site is of ours from our pub id and only 10-15 % is that some's pub id....

even we have username and password of our url and give to google as proof...so cant we ask google who is using our website to get money...

or from how long our domain name is being used by that pub id...ok that username and password of domain is not with others...with with that who owns that pub id...

s/he may have only user/pass of web space...

the way you have described seem to be so difficult...like search for id in similar site..there are million if not thousand of similar site...
we can give every proof and document ..that we owns our site...

is changing id and chaning space password only option ....
so hopeless..

by the way cant google use sense that as we have been using this account from many years and have been faithful ..decide who is doing what or atleast inquire on it on report...

by the way we earlier read that two adsense couldnot be used in one domain ..from when it was allowed...?

Frank,
I have no idea why you are still here on the forum discussing it instead of stopping all ads on your site, taking backup copies, collecting logs, writing to Google and investigating your employees..

No, Google will never reveal to a publisher another publisher's info, this is to protect us.

Whether Google allows 2 pub ids on one site is not your problem, your problem IS you have a thief working for you or a hacker that has access to your site files, you do not know if this kind of person committed click fraud or not, that is your problem, I already told you what you have to do, clean up your standing with Google quickly, find out later who it was, or even don't find out now and keep a close eye on your site in the future, it's up to you.

Having a history for years with Google is good, but no protection if advertisers are defrauded, Google will have no mercy, clean up or they would not want you to continue to use the program if you have no control on your site.

clean up now!

we cannot put eye on every moment of the tech employee and if we don't allow them to access files ..then th work will be stopped

Yes you can, If you don't trust them don't hire them, if you hire them, draw a legal contract that protects your properties, if you still don't trust them, don't give them access to live data, and upload the developed site pages yourself, can't do any of the above, don't hire anyone and do all the work yourself.

One more thing: Make sure your letter to Google is factual (only facts), no emotions, in plain clear points, and in good English.

really really thanks for your valuable suggestion...i was not being able to think what to do in the situation so....

actually it could have been,being going from many years .About not changing it now,We are new high officials in this organization..so if i can catch that theif i am even ready to sacrifice some days some percent.....we can have legal things after that....

we are also ready to pay if somebody can solve this problem for us.

but this wont last long ..i was just trying to make sure that let that person dont know that we have discovered it...and we continue our work...at least i am sure that no one in our organization use this forum...

so i came to know about one service called verify of google that allows to use only one domain for one pub id...we are having exclusive look at it...we have some number of tech employees who has password of diffent parts ..investigating all will require another budgetary plans...and employees...inquiring all at once all old employees, is easily said than done...

any way the problem currently now i am facing is either to report it to higher officials(boss) or not.If i do, i wont be able to give concrete evidence..or person ..and that will only create problems and unnecessay havoc in the company ..and they may just think that i have created all this drama just to impress them...even the convicted employee will say that he has been unethically convicted of it....

if i dont do the loss we suffered and oppurtunity i have now to catch that person is gone...(if i change all pub id now..s/he will be aware that we knew it..)

we will have meeting as soon as possible..

but to be frank i am not finding concerte way what to do...we even dont have a single google adsense expert in our country...

by the way when i say all these we have all the required proofs..domain password control ,good record with google...
but we have not been fallen in to this scenario or it was going on before we came...

If I were you I would:
- Let your immediate boss know, show him pages with 2 pubids
- Tell him the steps you are taking to rectify it, and inform him how dangerous the situation can be in case of click fraud
- Document all this to Google and to your boss in a letter
- Hire a guy to go through the technical stuff on your server logs and staff computers
- Do all the things mentioned in my first post

This way you have covered your own behind, did the right thing and hopefully will catch the thief and be in good standing with Google.

One way to catch the thief after you've taken backups and removed all ads, is to announce to everyone that the police will be informed about the discovered theft unless that person comes forward, fire him, and inform Google in case he tries to click attack you.

You don't need an AdSense expert (if there was such a thing), any webmaster or a web design company can solve your problem and do the above steps.

well thanks your words at least gives me some hope
any way about the steps you have said...

quoted from your post

"If I were you I would:
- Let your immediate boss know, show him pages with 2 pubids"

ok iam planning to do it ....after i conclude and get in to at least one direction i will do it.

"- Tell him the steps you are taking to rectify it, and inform him how dangerous the situation can be in case of click fraud "

by the way i also had ignorned that click fraud things up to now as s/he dont know up to now that we have got things s/he might not have done it..and i will act very fast now...

"- Document all this to Google and to your boss in a letter "

i was amazed to see how hopeless people can be even after finding that there is theif we know his identification but we dont know his/her name nothing even location....ok its privacy...but if we remove that pub id from our site and changed all pass and single handedly handle things for some time ...that pub id wont be able to get in to the site again as s/he cannot modify files....doesnt it prove that the pub id was squezzed here...even now only one ad unit in with that id other all our own...

- "Hire a guy to go through the technical stuff on your server logs and staff computers "

we have dedicated server and my first suspisition is going to these server official as they know the password and much of happening here

- Do all the things mentioned in my first post

about it
"0) Take a copy of your pages somewhere else(backup)"

ok that can be done no problem ..u mean online back up in some site..our database is very huge so may be we can back up scripts using adsense codes...so database back up is some what difficult

"1) Remove ALL ads from your pages"

that can and will be done

"2) Login to AdSense and put payments on hold"

ok that can also be done ....

"3) Contact Google with links to the backup "

ok that can also be done...

"4) Make a backup of your site stats and also send google a link to them. "
stats means any stat our site google analytics stat will work?

"5) Look in similar sites to yours and see if you can find the pubid on your site in any of them "

that is very very difficult..we have seen some 500 sites since yesterday..by the way that person might have been created adsense account just for this purpose and not used in elsewhere
after all its free to create...so dont think it can be done...

"6) Cross your fingers that it all makes sense to Google and there was no click fraud, as they expect site owners to have full control on their pages, if employee theft or hacking happens, it is you that is responsible, your best chance is to IMMEDIATELY show good faith and collaborate. "

sorry i didnt understood this....after doing all these if i have to sit back and pray then what's the use of those ..even that backup things is going to take huge time/bandthwidth...

any way thanks for all suggestion ..it had helped me a lot..
i have found that it indeed requires a expert to solve adsense problem as i have not found concrete answer from any place ...thanks for ways ...

Cross your fingers that it all makes sense to Google and there was no click fraud..

sorry i didnt understood this....after doing all these if i have to sit back and pray then what's the use of those ..even that backup things is going to take huge time/bandthwidth

Here Frank:

your problem IS you have a thief working for you or a hacker that has access to your site files, you do not know if this kind of person committed click fraud or not, that is your problem

This is why you need to do all fast and well, and hope for the best, if somone is dishonest, you could be looking at many problems.
Good Luck

Start using a version control system. let employees update the files there, and set up a method to only update the site from the VCS. That way if someone makes a change, you have a record of who made the change.

If you are going to allow employees access to all your files on your server give each of them a different login, and let the server track who made the most recent change.

Put a packet scanner on your network and see if anyone is logging in to adsense. It doesn't mean that they are guilty, since you won't have access to their pub-id, but it gives you reason to become more suspicious.

Once you have a reasonable suspicion, you might be able to subpoena the records from Google in a court case, or depending on your local laws, getting a criminal investigation going.