Can anybody please clarify if HTTP shields/scanners in AVs (such as Webguard in Avira) provide any value over HTTPS streams? I guess it is clear that they cannot scan the traffic content over an HTTPS connection (and is not port 80). Does it also bypass them with the use of VPNs, proxies, HTTPS everywhere addons etc. I am assuming so, though I am unclear where it is decrypted (E.G. via OpenVPN with VPNs) and if it is then seen by the scanner. Might this make sense: - Banking, shopping or anywhere personal information is exchanged, or if privacy is required - always use HTTPS links and also a VPN if in a public place - General browsing - use HTTP links (turn off VPNs etc.) allowing AV http scanner to check for driveby downloads etc. I know that the AV can always subsequently block files from drivebys when they are on the PC. So I am thinking that web/http scanners don't add much (in fact they usually slow down browsing) when using a lot of SSL tools/connections and it is better to focus on SSL communication and the other security layers?