In SQL, Ascending is used in the abbreviated term ASC. So your query would look something like:
SELECT * FROM MyTable ORDER BY MyColumn ASC
Edit:
You should really avoid string concatenation as a method for constructing your SQL queries. If I were to type into your search box:
blah%'; DROP TABLE books; --
Your entire books table would be deleted. This is the easy scenario, the hacker could also get all of your user credentials, passwords, email addresses, etc, before deleting the entire database and leaving you wondering what the hell happened.
Learn to use the SqlCommand and the parameters, it will save you from a lot of headache. Good to get the right way to do things now, even if you are only using this as a practice project at home. No need to develop bad habits.