The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.
Malware botnet controller located at 20.185.47.68 on port 3500 TCP:
$ telnet 20.185.47.68 3500
Trying 20.185.47.68…
Connected to 20.185.47.68.
Escape character is ‘^]’
Other malicious domain names hosted on this IP address:
augcavite.duckdns.org 20.185.47.68 (resolved via 8.8.8.8)
dangomra.duckdns.org 20.185.47.68
Referencing malware samples:
MD5 842f165abb3389385c52ad52a72235e9