You're being very optimistic about the powers of the audit there. That should be possible if Gox had reliable systems, kept thorough, accurate, comprehensive records, kept proper, archived backups and didn't tamper with any of the data, but do all those things sound likely to you? Bear in mind we're talking about people who didn't even keep their code in source control...
Did you see the leaks? We know we have logs of:
o Bank deposits and withdrawals (the banks keeps them for minimum 10 years, and can be checked against MtGox's records)
o Bitcoin deposits and withdrawals, to be verified against the blockchain.
o Every trade ever executed on MtGox.
There is a wildcard here. We don't know if all txids were saved in cases where a tx may be sent twice. If only the last one was saved, this may be a problem. It should still be possible to find those transactions using the spent outputs in MtGox's wallet.
This is enough to verify all balances. Finding the people who stole BTC and/or money is a case for the police, but this is separate from the audit.
I have one suggestion to Sunlot: Pay out all BTC balances of 1 BTC or less than BTC in full at once. This will get rid of 61840 creditors at a cost of maximum 7848 BTC (3.9% of the total amount of BTC), and I assume this will simplify dealings a lot. You could do the same with users having less than the equivalent in fiat, and get rid of most of the rest at a similar cost. (Cost will probably be lower, because most people's balances are less than the cost of withdrawing.) Or is having as many owners as possible in Sunlot's interest?