I just got back in from church, but I only have a few mins before we have lunch, let me comment a little on this:

getrawtransaction 9515e38f61d8f2a37f722f0d98190ef1e1965deee114ee4aebf1f96248de4ada

Since I developed this part of BiblePay, I know how the tx is structured and we have XML hints in the data for certain things.
I can say this was sent by your wallet either by the user at the keyboard or via the RPC and this was not an ABN or GSC transaction.

Was the wallet encrypted and locked or what state was the wallet itself in?

It looks to me someone sent enough out to make a sanc for themselves.

We can do some checks to see if the receiving address is anywhere in our system.  TheSnat should really be able to help with that part, but Ill do some checking after lunch.

(I doubt they would be dumb enough to do that though if they wanted to take the funds).