Don't do it like that! Never concatenate strings to build a SQL command. It leaves you wide open to accidental or deliberate SQL Injection attack which can destroy your entire database. Use Parametrized queries instead.
Fixing that will also get rid of your problem:
string sql = "insert into bill(fname, lname, date, IMEIno, coname, mname, color, price, discount, totalamt) values (@fname, @lname, @date, @IMEIno, @coName, @mname, @color, @price, @discount, @totalamt)";
Do the same with your DELETE statement, and check everywhere else in your app: if you leave one concatenation in, someone will destroy your DB...
BTW: Do yourself a favour, and stop using Visual Studio default names for everything - you may remember that "TextBox8" is the mobile number today, but when you have to modify it in three weeks time, will you then? Use descriptive names - "tbMobileNo" for example - and your code becomes easier to read, more self documenting, easier to maintain - and surprisingly quicker to code because Intellisense can get to to "tbMobile" in three keystrokes, where "TextBox8" takes thinking about and 8 keystrokes...