Everyone likes to beat up on Paypal for fraudulent card use and until someone figures out a way to stop card theft, there is nothing that can be done, except to exercise caution and common sense.
Paypal rarely guarantees funds make with a fraudulent card, the same as other payment processors. Having run brick and mortar business's, identity theft is a huge problem and companys write off billions each year due to fraud purchases. So it is not just Paypl who doesn't guarantee these types of funds.
Personally, I am sitting on over $2000 worth of fraudulent card activity in my account. Having been through this before, it is pretty easy to recognize a fraudulant payment. As soon as I have time, I'll contact Paypal and they can then sort it out BEFORE I have problems. For the most part, I have found PayPal to be very good and you simply have to learn how to play by their rules....as in life all over...there are rules and parameters.
Someone said escrow.com and you will have the same problem there. Companys like this only guarantee proper exchange, by holding the funds etc. They cannot guarantee against fraud, as that sometimes takes up to 6 months...yes, I had a guy contact me recently about a small charge almost 6 months ago through Paypal. Of course it was refunded.
If someone "steals" your info and make payments, don't you expect the card company to get your money back?? Of course you do..and regardless, someone other than the bad guy usually pays the price.
KPR, I feel for you and personally, I would email everyone on your forum and tell them what happened and provide details. Post the events here in the warning areas, so that others can try to avoid clowns who are doing this, as well as other places you work with. It is about the only way to slow it down..the legal system is of no real value in small cases like this and even if they were, where would the jurisdiction be?? I would also stay on the registrar, with all proper proof from Paypal etc. If they are a "sub-registrar", then rock the boat higher up, as in Enom etc. CC all parties and maybe that will help.