The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.
Malware botnet controller located at 20.36.20.111 on port 1604 TCP:
$ telnet 20.36.20.111 1604
Trying 20.36.20.111…
Connected to 20.36.20.111.
Escape character is ‘^]’
Referencing malware samples (MD5 hash):
a750d5f19524e4431550930c4e8a0a95 — AV detection: 43 / 67 (64.18%)