did u downloaded any of the picture or opened any page that the guy referred or sent u?

this work can be done easily with a keylogger which installs itself on ur sys once u open/download the malacious page/picture/software.
a keylogger captures all the keystrokes from ur sys and logs them in a file.In this case the guy must have configured the keylogger to send the log to him via mail.
so in this case the SSL is of no use.

u must see all the tasks running in the task manager and if there's any task u don't recognize, end it.
Also remove all the registry entry by that name after that.