If you antivirus solution support application control, you can use the MD5 hash to block all versions. http://www.symantec.com/connect/articles/most-detailed-way-block-ultrasurf
I use Symantec. (if you blockit by name they can just change the name of the application)
You can also use the same method via GPO "Hash rule" http://www.techrepublic.com/article/prevent-unauthorized-software-on-your-network-with-software-restriction-policies/
All the MD5 hash from ultrasurf are here: http://ultrasurf.us/verify.html
[original article: http://www.linkedin.com/groups/how-block-ultrasurf-in-domain-1832255.S.5803767031480201217?view=&srchtype=discussedNews&gid=1832255&item=5803767031480201217&type=member&trk=eml-anet_dig-b_pd-ttl-hdp&fromEmail=&ut=0PZ8mejJ_ws601]