It depends.
From the provider, the country and your carelessness

- if the browser (or any other application with root privileges, such as an antivirus) leaks data to the provider / special center
- if you have installed an extension in the browser that dumps data into a special center
... then neither https, nor tor, nor cool passwords, etc.
a great example, the provider can inject on the fly into any applications that you download to yourself via insecure protocols, specialized viruses ... which, in turn, will expand access to information (the game was downloaded from a local file dump, a friend threw a convenient utility through the provider's file hosting and etc.).
Clean and reliable software on your computer is a guarantee of invisibility ... the question remains closed, is it possible to trust other people's binaries in principle? after all, surveillance of their citizens is a priority not only for third world countries, but also for countries with high democratic values ​​(tag sarcasm).

Can an ISP change ... https to http

Inside your network - easily, at least for anything (what for would it be only for him?). But at the exit from his routing network, he will have to return everything as it was - otherwise you will not have any love in the form of a connection with the server you accessed.

and sniffer to catch your traffic?

Firstly, in order to sniff your traffic, the provider does not need any protocol conversion.
Secondly, even if the provider converts traffic from HTTPS to HTTP, this does not mean at all that he will somehow magically decrypt this traffic. As there was an encrypted unreadable crap, it will remain so. So do not be greedy - let him sniff, if he has nothing to do, it will not reveal your secrets.

If the traffic is encrypted then no

You can wrap https traffic in squid, for example, and there you can already do anything, example Intercepting and viewing HTTPS traffic to a proxy server...