The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.
Malware botnet controller located at 20.199.112.16 on port 3535 TCP:
$ telnet 20.199.112.16 3535
Trying 20.199.112.16…
Connected to 20.199.112.16.
Escape character is ‘^]’
Referencing malware samples (MD5 hash):
05633f6a8c4a6d559ccb685defee2536 — AV detection: 46 / 69 (66.67%)